# Privacy and Security Use this page to understand the data boundaries around capture, local storage, sync, and reuse in Octoclip, plus the settings to adjust first when clips may contain sensitive content. ## Data lifecycle | Stage | What happens | User controls | |---|---|---| | Capture | Octoclip may record clipboard or supported source content into local history | history toggle, source exclusion, filter rules | | Local storage | Clip history is kept in the app's local data area | retention, cleanup, delete, app/platform storage controls | | Nearby Sync | Content transfers between paired/nearby devices over the local path | enable/disable sync, pairing, local network permissions | | Cloud Sync | Selected data syncs through the configured WebDAV / S3 path, end-to-end encrypted with a key you hold | provider choice, credentials, your encryption key, sync scope; config import/export varies by version | | Display and reuse | Clips appear in history, search, Quick Input, aliases, or previews | visibility, deletion, favorites, filters | ## Boundaries to know - Cloud Sync uses the WebDAV / S3 path you configure. You are responsible for checking that provider's account access, permissions, region, retention, and backup behavior. - Nearby Sync is for local or nearby device transfer. Stability depends on the local network, pairing, local network permissions, and firewall rules. - Do not treat Cloud Sync as default storage on Octoclip-owned cloud infrastructure. The actual path depends on the sync mode and provider you configure. - Do not treat any clipboard tool as an absolutely secure vault. Keep OTPs, tokens, keys, passwords, and other sensitive clips short-lived, local-only, or excluded from capture. ## Assumptions to avoid - Every platform captures, pastes, and syncs in exactly the same way. - Turning on sync means every clip reaches every device in real time. - A feature keeps the full experience after a required permission is disabled. - Sensitive content captured by mistake can be left for sync or storage settings to handle automatically. Delete the item and add exclusion or filter rules. ## Security baseline :::steps :::step{title="Minimize capture scope"} Exclude sensitive apps or sources whenever possible. ::: :::step{title="Minimize sync scope"} Start with collections and aliases before syncing full clip history. ::: :::step{title="Keep sensitive clips short-lived"} Use short retention, manual deletion, or local-only workflows for OTPs, tokens, keys, and secrets. ::: :::step{title="Keep support logs clean"} Do not send passwords, tokens, API keys, or private clipboard content in screenshots, logs, or forum posts. ::: ::: ## Risk scenarios :::accordion{multiple} :::item{label="Concerned about cloud storage risk"} Use Nearby Sync only, or keep Cloud Sync scope narrow. Review your WebDAV / S3 provider's permissions, retention, and region settings. ::: :::item{label="Shared device may expose history"} Shorten retention, delete sensitive entries, disable history for sensitive periods, and use platform account separation. ::: :::item{label="Sensitive content was captured by mistake"} Delete affected entries immediately and add source/filter rules for the related app or content pattern. ::: :::item{label="Lost or forgotten encryption key"} Cloud Sync content is encrypted with a key only you hold, so a lost key means the encrypted clips in your bucket cannot be recovered—by anyone, including Octoclip. Store the key in a password manager before enabling Cloud Sync. ::: :::item{label="Need enterprise review"} Prepare current privacy policy, sync architecture, provider responsibility, permission list, data retention policy, and whether diagnostics collect any non-content operational data. ::: ::: ## Related docs :::cards{cols=2} :::card{title="Data & Security overview" icon="lucide.shield" href="/features/data-security/overview"} Entry to the feature-side notes on local, cloud, backup, and privacy. ::: :::card{title="Privacy and sensitive content" icon="lucide.eye-off" href="/features/data-security/privacy"} Practical controls for sensitive clips, exclusions, and sync scope. ::: :::card{title="Cloud Sync" icon="lucide.cloud" href="/features/cloud-sync"} Understand WebDAV / S3 sync scope and behavior. ::: :::card{title="Account and license" icon="lucide.key-round" href="/features/account-and-license"} Understand paid features and activated devices. ::: :::