Last updated · July 6, 2026

Privacy Policy

This policy explains what Purgify collects, why it collects it, and how you stay in control. The short version: we collect the minimum each feature needs, and we never sell your data.

01Who we are

Purgify is a multi-cloud storage cleanup service operated by Auris, a company based in Santiago, Chile. Purgify helps you find duplicates, stale files and reclaimable space across the cloud storage providers you choose to connect.

02Information we collect

We collect the minimum needed to run the service:

  • Account information: the email address you sign up with, used for authentication.
  • OAuth tokens: access and refresh tokens issued by the providers you connect (for example Microsoft, Google, Dropbox or Box). We use them only to perform the actions you request.
  • File metadata: file names, paths, sizes, modification dates and content hashes, read from your connected providers to detect duplicates and cleanup candidates.

03Data minimization

Purgify requests the least access needed for each feature. Today, scans work on file metadata and Purgify does not store the contents of your files. If a future feature requires deeper access (for example, content-based analysis), we will request that permission separately through your provider's consent screen, explain why, and update this policy before it launches.

We do not collect browsing history, contacts, or any data unrelated to storage management.

04How we use your information

Your data is used exclusively to operate Purgify: scanning the accounts you connect, computing duplicate and cleanup reports, and showing you storage usage over time.

We do not sell your data. We do not show ads. We do not share your data with third parties beyond the cloud providers you explicitly connect.

05Third-party providers & OAuth

When you connect a provider (such as Microsoft OneDrive, Google Drive, Dropbox or Box), you authenticate directly with that provider through OAuth. Purgify never sees your provider password, and the permissions requested are always visible on the provider's consent screen before you approve them.

Purgify’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

06Data storage & security

Account data is stored with our database provider (Supabase). Provider OAuth tokens are encrypted at rest and are only decrypted server-side to perform the operations you request. All traffic between your browser, Purgify and the providers uses TLS.

07Data retention & deletion

Metadata snapshots and scan results are kept only while the related account connection exists. When you disconnect a provider, its stored tokens and scan data are deleted. When you delete your Purgify account, all associated data is removed.

08Revoking access

You can disconnect any provider from Purgify at any time. You can also revoke Purgify’s access directly from your provider’s security settings (for example Google Account permissions, Microsoft account privacy dashboard, or Dropbox connected apps). Revocation takes effect immediately.

09Changes to this policy

If this policy changes materially, we will update this page and the “Last updated” date above. Significant changes will be communicated in the app.

10Contact

Questions about privacy or your data? Write to [email protected] and we will get back to you.