Privacy Policy
This policy explains what data the ModiDesk apps and website collect, why, how it is protected, and the rights you have over it. It applies to the ModiDesk apps for Windows, macOS, Linux, Android and iOS, and to this website.
Who we are
ModiDesk is operated by ModibusTech OÜ, a private limited company registered in Estonia ("we", "us", "our"). We are the data controller for personal data processed through the ModiDesk apps, the Modibus Cloud service and this website. ModiDesk is a secure remote-desktop and remote-support product.
Data we collect
Account data — if you create an account: a username, email address and a securely hashed password. Used to authenticate you and provide the service.
Device & connection data — a device ID, IP address and technical connection metadata (timestamps, relay/region, connection quality) needed to establish and route a remote session. This is transient operational data.
Session content — the remote screen, keyboard/mouse input, transferred files and optional audio are end-to-end encrypted. Our relay servers only forward encrypted bytes; we cannot read, record or store your session content.
Diagnostics — if you opt in, anonymous crash/diagnostic information to help us fix problems.
Website data — basic analytics and cookies as described below.
Data we do NOT collect
ModiDesk does not collect your precise location, contacts, photos, messages, browsing history, health data, or advertising identifiers. We do not use your data for advertising and we do not sell or rent your personal data to anyone.
App permissions (mobile)
On Android and iOS, ModiDesk requests only the permissions required for remote access, and only when you use the related feature:
Screen recording / accessibility — so this device can be viewed and controlled during a session you authorise.
Network / internet — to connect to Modibus Cloud and the remote peer.
Foreground service & notifications (Android) — to keep an active remote session running reliably and let you see/stop it.
Microphone / files (optional) — only if you use audio or file transfer in a session.
You can revoke any permission at any time in your device settings.
How your data is shared
We do not share personal data with third parties except: infrastructure providers that host Modibus Cloud (acting as our processors under contract), and where required by law. Encrypted session traffic is relayed but never decrypted by us or any provider.
Legal basis (GDPR)
We process data to perform our contract with you (providing the service), for our legitimate interests (security and improving the product), to comply with legal obligations, and — for optional cookies/diagnostics — with your consent.
Data location & transfers
ModiDesk runs on Modibus Cloud across multiple regions. Where required by law, your data can be pinned to a specific country so it does not leave that jurisdiction. Any international transfers use appropriate safeguards (e.g. EU Standard Contractual Clauses).
Data retention
We keep account data while your account is active and delete or anonymise it after closure, except where we must retain limited records by law. Connection metadata is kept only as long as needed to operate and secure the service. Session content is never stored.
Delete your data
You can delete your account and associated personal data at any time from the admin console (Profile → delete), or by requesting deletion via our contact form. We will action verified deletion requests without undue delay. Because session content is end-to-end encrypted and never stored, there is nothing for us to delete there.
Your rights
Subject to applicable law, you may request access, correction, deletion, restriction or portability of your personal data, and may object to certain processing or withdraw consent. To exercise any right, use our contact form. You may also lodge a complaint with your local data protection authority (in Estonia, the Andmekaitse Inspektsioon).
Security
Sessions are protected with end-to-end encryption; passwords are stored only as salted hashes; and access to our systems is restricted and monitored. No method of transmission or storage is 100% secure, but we work hard to protect your data.
Children's privacy
ModiDesk is a general-purpose business/utility product and is not directed to children under 16. We do not knowingly collect personal data from children.
Cookies (website)
Essential cookies keep your session secure and the site working; these are always on.
Optional cookies help us understand site usage. You can accept or decline them via the cookie banner and change your mind any time by clearing your browser storage.
Changes to this policy
We may update this policy; material changes are reflected by the "last updated" date below. Continued use of ModiDesk after an update means you accept the revised policy.
Contact
ModibusTech OÜ, Estonia. Questions about this policy or your data? Get in touch via our contact form.