Skip to main content
CaseSyncGet the app

Privacy Policy

Last updated April 17, 2026.

Summary

CaseSync is built to keep investigative case data under your control. In the current version of CaseSync (V1), case data — sources, events, notes, exports — is stored locally on your device and is not uploaded to our servers. We communicate with our servers only to verify your Google Play subscription and to keep your entitlement status (active, canceled, on hold, paused, in grace) in sync with Google.

Who we are

CaseSync is developed and operated by Cactus Code and Web Design, 21253 N 79th DR, Peoria, AZ 85382. For privacy-related questions contact us at privacy@cactuscodeandwebdesign.com.

Data we collect

On your device

  • Cases you create, including sources, events, notes and exports.
  • Local app preferences such as theme and last-used settings.
  • A cached copy of your current entitlement status so the app can run offline.

On our servers

  • A one-way SHA-256 hash of your Google Play purchase token. We never store the raw token.
  • The subscription state reported by Google Play, along with its expiry, auto-renew flag, and our computed offline-valid-until timestamp.
  • Timing metadata for verification and Real-time Developer Notification (RTDN) events from Google, used strictly for idempotent processing.
  • Standard web-server access logs (IP, user-agent, request path, timestamp) retained for a limited period for reliability and abuse prevention.

What we do not collect

  • Case content, event details, notes, or exports.
  • Contacts, precise location, or advertising identifiers.
  • Behavioral analytics on your use of the app.

How we use data

  • To verify and maintain your subscription entitlement with Google Play.
  • To provide and secure the service (rate-limiting, abuse prevention, troubleshooting reported issues).
  • To meet tax, legal, and accounting obligations where required.

We do not sell your data. We do not use case data for advertising. We do not share data with third parties for marketing purposes.

Google Play billing

Purchases, renewals, refunds, and payment method changes are handled by Google Play under Google’s terms and privacy policy. We receive from Google only the information required to validate and maintain your subscription. We do not receive your payment method or billing address.

Data retention

  • Entitlement records: retained while your subscription is active and for a limited period afterward for billing reconciliation and dispute handling.
  • RTDN event records: retained for idempotency and audit, then aged out.
  • Server access logs: retained for a short period measured in days to weeks.

Your rights

Depending on where you live, you may have rights to access, correct, or delete personal data we hold about you. Because we hold only entitlement metadata, the practical scope of these requests is limited. To exercise a right, email privacy@cactuscodeandwebdesign.com from the address associated with your Google Play account, or from an address you can verifiably connect to your purchase. We will respond within the timeframe required by applicable law.

Security

We use TLS in transit for all API traffic, restrict server-side access, and hash purchase tokens server-side. On-device, the app offers an app lock that integrates with your device’s biometric or credential authentication.

Children

CaseSync is a professional tool and is not directed at children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal data from children.

International users

CaseSync’s servers are operated in United States. By using CaseSync, you consent to the transfer of the minimal entitlement metadata described above to that jurisdiction.

Changes to this policy

We may update this policy as CaseSync evolves. Material changes will be reflected by updating the “Last updated” date above and, where appropriate, by an in-app notice.

Contact

Privacy questions: privacy@cactuscodeandwebdesign.com. General support: dev@cactuscodeandwebdesign.com.