Every byte,
accounted for.

CageSync is developed and maintained by Govind Prakash - a tool built by a researcher, for researchers. For the purposes of data-protection law, we are the data controller for the information described in this policy. If you have any questions, you can reach a real person directly.

2.1  Account information

When you create an account or sign in, we collect and store:

• Email address - your login identifier and how we contact you about your account
• Name - to personalize your account
• Profile picture - imported from your Google account if you sign in with Google
• Authentication data - a securely hashed password (for email sign-in) and session tokens that keep you logged in

You can sign in with either Google or an email and password.

2.2  Colony & research data you create

The records you enter in the app are stored in your account so they're backed up and stay in sync across your devices:

• Cage identifiers and cage card data
• Animal colony records (litter information, birth dates, genotypes)
• Treatment and injection records
• Body weight measurements
• Experimental notes and observations
• Breeding pair and harem setup information

2.3  Google Sheets access (optional)

If you enable Google Sheets sync, you'll authorize access through Google's OAuth 2.0 system. We never see, access, or store your Google password. We receive only a scoped token that lets the app write your colony data to the Google Sheet you designate.

2.4  App settings & preferences

Your in-app preferences are saved to your account so your setup carries across devices.

2.5  Information we do not collect

• Advertising identifiers or cross-app tracking IDs
• Precise location data
• Third-party analytics, telemetry, or marketing SDKs
• Anything we then sell, rent, or trade (we never do)

We use the information we collect only to operate CageSync for you:

• Authenticate you and keep your account secure
• Store and sync your colony records so they're backed up and available across your devices
• Power Google Sheets export when you explicitly enable it
• Remember your settings and preferences
• Provide support and respond when you contact us

4.1  Where your data is stored

Your account information and colony records are stored in our managed database provided by Supabase (a hosted PostgreSQL platform). Data is encrypted in transit (TLS) and at rest, and protected by access controls so each account can only reach its own data.

4.2  On your device

The app keeps a local copy of your records on your device so you can keep working offline; changes sync to your account when you're back online.

4.3  Google Sheets

If you enable Google Sheets sync, a copy of your colony data is written to a spreadsheet in your own Google Drive, under your Google account's terms and fully under your control.

4.4  Retention

We retain your information for as long as your account is active. When you delete records they are removed from your account; when you delete your account, we delete the personal data associated with it from our active systems (routine encrypted backups are purged on a rolling cycle). Data you exported to your own Google Sheet remains yours to keep or delete.

We do not sell, trade, or rent your personal information. We share data only in these limited, necessary circumstances:

• Service providers (sub-processors): we use Supabase to host our database and handle authentication, and Google for optional sign-in and Sheets sync. They process data on our behalf under their own privacy and security commitments.
• Legal requirements: we may disclose information if required by law, court order, or a valid governmental request.
• Business transfer: in a merger, acquisition, or sale of assets, your information may be transferred. We'll notify you by email or a prominent notice beforehand.

CageSync relies on the following third-party services. We encourage you to review their privacy policies.

We take the security of your data seriously:

• All data is encrypted in transit (TLS) and at rest in our database.
• Passwords are never stored in plain text - they are securely hashed by our authentication provider.
• Access controls ensure each account can only read and write its own records.
• Google OAuth tokens are stored securely and used only for the Sheets access you authorize.

That said, no method of electronic storage or transmission is 100% secure. We can't guarantee absolute security, so we encourage you to use a strong, unique password and keep your devices locked.

8.1  Access & portability

You can view all your records in the app at any time, and export your colony data to your own Google Sheet for a portable copy.

8.2  Correction

You can edit your profile details and your colony records directly in the app.

8.3  Deletion

You can delete individual records at any time, or delete your entire account to remove the personal data associated with it from our active systems. To request account deletion or assistance, contact govind@cagesync.com.

8.4  Revoking Google access

You can revoke CageSync's access to your Google account at any time at myaccount.google.com/permissions.

8.5  GDPR rights (European users)

If you're in the European Economic Area or UK, you have the right to access, correct, erase, restrict, or object to the processing of your personal data, and the right to data portability. To exercise any of these, contact govind@cagesync.com. Our lawful basis for processing is the performance of our contract with you (running your account) and your consent for optional features like Google Sheets sync.

8.6  California privacy rights (CCPA)

California residents have the right to know what personal information we collect, request its deletion, and opt out of its sale. We do not sell personal information. To exercise your rights, contact govind@cagesync.com.

CageSync is intended for researchers, graduate students, and laboratory professionals. The Service is not directed to individuals under 13 (or 16 in the EEA), and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact govind@cagesync.com and we'll promptly delete it.

CageSync is developed in India, and your data is stored on Supabase's managed cloud infrastructure, which may process data in the region where our project is hosted. If you use Google sign-in or Sheets sync, data is also transmitted to Google's servers. These transfers may cross international borders and are governed by the providers' data-transfer mechanisms and standard contractual safeguards. By using CageSync, you consent to this processing.

CageSync uses authentication tokens strictly to keep you securely signed in to your account (these are essential to the service, not tracking tools). We use no advertising cookies, marketing pixels, or third-party analytics SDKs in the app. Our website (cagesync.com) may keep standard server logs (IP address, browser type, pages visited) for security and performance monitoring only.

We may update this Privacy Policy from time to time. When we make material changes, we will:

• Update the "Last updated" date at the top of this page
• Post the new policy at cagesync.com/privacy
• Where appropriate, notify you through the app or by email

Your continued use of CageSync after any changes constitutes acceptance of the updated policy. We encourage you to review this page periodically.

CageSync's source code is available on GitHub at github.com/cagesync. You're welcome to review the code to verify exactly how your data is collected, stored, and handled, including how we talk to Supabase and Google.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please get in touch. We aim to respond to all privacy-related inquiries within 5 business days.