← Home

PRIVACY

Privacy Policy

Last updated: 16 July 2026

This privacy policy explains what happens when you use the Riftcast website (riftcast.app) and the Riftcast desktop / phone software. Short version: the app does not send your screen, audio, or control data to us.

1. Controller

Controller for the website and product information: Dennis Bierreth (REIOKEN), Deutschland. E-mail: dennis.bierreth@gmail.com. See also the imprint.

2. What the software does with data

Riftcast runs on your Windows PC and connects your phone or browser directly to that PC (on your LAN, or via a private tunnel you enable). Screen, audio, mouse/keyboard/gamepad input, clipboard text, and session codes stay between your devices. We do not operate a Riftcast cloud that stores sessions, video, or control streams.

3. Data stored only on your PC

On your computer the app may store local settings such as a session PIN, pairing tokens for devices you approved, optional TLS certificate material, and tunnel configuration. That data remains on your machine unless you copy or back it up yourself.

4. Website (riftcast.app)

When you open the website or download the installer, our host (Cloudflare) may process standard server logs: IP address, time, requested URL, user agent / browser, and similar technical metadata. These logs are used for delivery, security, and abuse prevention. We do not run advertising trackers or analytics pixels on the site.

5. Optional remote tunnel

If you enable remote access, traffic is routed through a private Cloudflare tunnel that you control. Cloudflare then processes connection metadata and encrypted tunnel traffic as needed to provide that service under Cloudflare’s terms. You can leave remote access off and use LAN only.

6. Cookies and local storage

The website and PWA may store a language preference (localStorage key rc_lang) and, in the app, connection/pairing data on your device. No cookie banner is required for this strictly necessary preference storage. We do not use third-party marketing cookies.

7. Legal bases (GDPR)

Website delivery and security logs: Art. 6(1)(f) GDPR (legitimate interest in operating and securing the site). Software processing on your devices: you are typically the controller of that local processing; we provide the tool. Contact by e-mail: Art. 6(1)(b) or (f) depending on the request.

8. Retention

Server logs are retained only as long as needed for operations and security (typically days to a few weeks at the host). Local app data remains until you delete the app, clear its config, or revoke paired devices.

9. Your rights

If we process personal data about you (for example via website logs or e-mail), you may have rights of access, rectification, erasure, restriction, objection, and data portability under the GDPR, and the right to lodge a complaint with a supervisory authority. Contact us at the e-mail above.

10. Children

Riftcast is not directed at children under 16. Do not use the service to process children’s data without appropriate legal grounds.