Last updated: April 5, 2026 1. Overview MonDesk ("the App") is a server monitoring client that connects to BackendSideMon instances installed on servers that you own or administer. This Privacy Policy explains what information the App collects, how it is stored, and how it is used. 2. Information the App Collects a) Server connection credentials When you add a server, the App stores: A display name you choose The server's base URL A username and password Passwords are encrypted using AES-256-GCM via the Android Keystore system before being written to device storage. Encryption keys are hardware-backed and never leave your device. b) Server monitoring data The App retrieves system metrics (CPU, RAM, disk usage, network I/O, running processes, network connections, firewall rules, and security event logs) from the servers you configure. This data is fetched on demand and displayed in the App. It is not stored persistently on your device beyond what is held temporarily in memory while the App is running. c) Alert preferences Notification threshold settings (e.g. alert when CPU exceeds 90%) are stored locally on your device. 3. Information the App Does NOT Collect The App does not collect any personal information about you as a user. The App does not transmit any data to the developer or any third party. The App does not use analytics, advertising SDKs, or crash-reporting services. The App does not create user accounts. The App does not access your contacts, camera, microphone, location, or any files outside its own storage. 4. Data Storage and Security All data stored by the App (server credentials and alert preferences) is saved exclusively on your local device using Android's DataStore. Passwords are encrypted with AES-256-GCM using the Android Keystore before being written to disk. No data is uploaded to any server operated by the developer. Communication between the App and your BackendSideMon servers occurs directly from your device to your server over HTTP or HTTPS, depending on your server's configuration. When using HTTPS, the App accepts self-signed certificates to support private server deployments. You are responsible for the security of the servers you connect to. 5. Notifications If you enable alerts, the App uses Android's WorkManager to periodically check server metrics in the background (approximately every 15 minutes) and may send local push notifications when thresholds are exceeded. This background activity connects only to servers you have explicitly added. No notification data is sent to external services. 6. Third-Party Services The App uses the following open-source libraries, which run entirely on your device and do not transmit data externally: Retrofit / OkHttp (network requests to your own servers) Gson (JSON parsing) Jetpack Compose, Navigation, DataStore, WorkManager (Android UI and system frameworks) 7. Children's Privacy The App is intended for use by system administrators and IT professionals. It is not directed at children under the age of 13, and we do not knowingly collect any information from children. 8. Changes to This Policy If this Privacy Policy is updated, the new version will be made available on the App's Google Play store listing. Continued use of the App after changes constitutes acceptance of the revised policy. 9. Contact If you have any questions about this Privacy Policy, please contact the developer through the contact information listed on the App's Google Play store page. This privacy policy applies solely to the MonDesk Android application and does not cover the BackendSideMon server software or any servers you choose to connect to.