Privacy Policy

Effective Date: 28 February 2026

Platform: octopussol

Operator: octopus

1) Scope

This Privacy Policy explains how octopussol (the "Platform") collects, uses, stores, and shares personal data when you use our decentralized video streaming and channel tools.

2) Service Model (User-Owned Storage)

The Platform is designed so creators can keep media files in storage systems they control (for example, Google Drive, Dropbox, and other connected providers).

In normal operation, we primarily process metadata and stream references needed to publish and play videos in channels.

We generally do not claim ownership of your files and do not centrally host your full media library by default.

3) Data We Collect

We may collect and process the following categories of data:

3.1 Account and Profile Data

• Name, username, and email address
• Authentication/provider type
• Account settings and preferences

3.2 Channel and Video Metadata

• Video title, description, tags, visibility, and category
• Thumbnail URL/reference
• Provider identifiers and file references needed for playback
• Channel-level metadata (channel name, poster text, profile links)

3.3 Connection and Authorization Data

• OAuth/provider connection state
• Access/session tokens or token-derived session identifiers
• Limited provider configuration fields required for streaming/migration workflows

3.4 Usage and Technical Data

• IP address, approximate geolocation, user-agent/device data
• App logs, error logs, and request timestamps
• Performance and diagnostic telemetry

3.5 Support and Communications

• Messages, support requests, and related contact details

4) Data We Usually Do Not Collect by Default

• Full copies of all user video files in a centralized media vault
• Unnecessary contents from your connected cloud storage account

If a specific migration or processing workflow temporarily handles file content, it is only to complete the action you requested.

5) How We Use Data

We use data to:

• Authenticate users and secure accounts
• Connect authorized storage providers
• Store channel/video metadata and publish channel pages
• Resolve stream playback references for viewers
• Operate migration/import workflows initiated by users
• Prevent abuse, fraud, and unauthorized access
• Comply with legal obligations and enforce platform policies
• Improve reliability, performance, and product features

6) Legal Bases (Where Applicable)

Depending on jurisdiction, we process personal data under one or more of these legal bases:

• Contract performance (providing requested services)
• Legitimate interests (security, abuse prevention, service improvement)
• Consent (where required, including certain cookies/integrations)
• Legal obligation (compliance, law enforcement, regulatory requirements)

7) Third-Party Storage and Integrations

When you connect services like Google Drive or Dropbox:

• You authorize access through the provider's OAuth/authorization flow.
• Provider terms and privacy policies also apply to your use of those services.
• You can revoke access in your provider account settings.
• Revocation may disable playback/migration until reconnected.

We are not responsible for outages, policy changes, or independent data practices of third-party providers.

8) Sharing and Disclosure

We may share data:

• With infrastructure/service providers acting on our instructions
• With connected storage providers as required for requested operations
• To comply with lawful requests (court orders, law enforcement)
• During business transfers (merger, acquisition, restructuring), subject to safeguards

We do not sell personal data for third-party advertising purposes.

9) Cross-Border Processing

Because infrastructure and provider systems may operate globally, your data may be processed in multiple jurisdictions. We apply reasonable safeguards appropriate to the transfer context and applicable law.

10) Retention

We retain data only as long as necessary for:

• Service delivery and account operation
• Security, audit, and dispute resolution
• Legal and regulatory compliance

When data is no longer needed, we delete, anonymize, or securely isolate it according to technical and legal constraints.

11) Security

We use administrative, technical, and organizational safeguards designed to protect personal data, including access controls, credential protections, and monitoring.

No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

12) Your Rights

Depending on applicable law, you may have rights to:

• Access your personal data
• Correct inaccurate data
• Delete data
• Restrict or object to processing
• Request data portability
• Withdraw consent where processing relies on consent

To submit a request, contact us using details below. We may need to verify identity before acting.

13) Cookies and Local Storage

The Platform may use cookies and local storage/session storage for sign-in state, security, preferences, and core functionality.

Disabling certain storage features may limit app functionality.

14) Children's Privacy

The Platform is not intended for children under 13 (or higher minimum age required by local law). If we learn that prohibited child data was collected, we will take reasonable steps to delete it.

15) Changes to This Privacy Policy

We may update this policy from time to time. Material updates will be posted with a revised effective date. Continued use after updates indicates acceptance of the updated policy where legally permitted.

16) Contact

For privacy requests or questions:

• Email: sharjeelsohail85@gmail.com