Legal
Privacy Policy
CMS Companion for Directus
- Effective Date
- March 27, 2026
- Developer
- Muhammad Imran Faruqi
- Contact
- [email protected]
1. Overview
CMS Companion for Directus is a mobile and web client that connects only to the Directus backend URL you configure. The app does not operate its own content servers or databases, and your records remain on the Directus instance you choose.
2. Data We Collect
2.1 Data Stored Locally on Your Device
| Data | Purpose | |
|---|---|---|
| Directus server URL | Connect to your backend | SharedPreferences |
| Authentication tokens (access and refresh) | Maintain your login session | SharedPreferences |
| Saved email address | Pre-fill sign-in when Remember Me is enabled | SharedPreferences |
| Theme, bookmarks, and layout preferences | Personalize the workspace and preserve saved views | SharedPreferences |
| Dynamic Data Page configurations | Save custom analytical layouts and filters | SharedPreferences |
| Biometric login enabled flag | Allow Face ID or fingerprint sign-in | SharedPreferences |
2.2 Data Transmitted to Your Server
The app communicates only with the Directus server URL you configure. Depending on the features you use, transmitted data can include:
- Login credentials, API tokens, or SSO redirects
- Collection, item, revision, file, and relationship operations
- Activity log and notification requests
- Profile updates and settings sync stored in your Directus account
- File uploads, downloads, and preview requests
- Real-time WebSocket events between the app and your configured Directus backend
2.3 Data We Do NOT Collect
- We do not collect analytics or telemetry.
- We do not use advertising SDKs or third-party trackers.
- We do not send data to any server other than the Directus instance you configure.
- We do not store your password on-device after sign-in.
- We do not access contacts or location data.
- Camera, microphone, and photo-library access only happen when you explicitly trigger file capture or selection.
3. Third-Party Services
CMS Companion for Directus does not integrate third-party analytics, advertising, or tracking services.
When you explicitly preview certain office document formats in a web view, the app may rely on Google Docs Viewer to render the document. This can require sending the document URL to Google's servers for that specific preview action.
4. Biometric Data
If you enable biometric login, the app asks the operating system to authenticate you with Face ID, Touch ID, or fingerprint. CMS Companion for Directus never receives, stores, or transmits biometric templates or raw biometric data.
5. Data Security
- Communication with your configured Directus server is intended to use HTTPS.
- Authentication tokens are stored locally to keep your session active.
- The app avoids collecting unrelated data and does not run third-party tracking pipelines.
- You can clear local app data by logging out or uninstalling the app.
6. Data Retention and Deletion
- Local data such as tokens and preferences remain on your device until you log out, clear app storage, or uninstall the app.
- Content and account data remain on your Directus server and follow that server's own retention rules.
- To delete server-side data or accounts, contact the administrator of the Directus instance you use.
7. Children's Privacy
CMS Companion for Directus is not directed to children under 13, and we do not knowingly collect personal information from children.
8. Your Rights
Because your content remains on your own Directus backend, you retain control over your data and account lifecycle.
- Export or manage your content through your Directus server at any time.
- Delete your account or records through your Directus administrator or admin tools.
- Clear locally stored app data by logging out, clearing app storage, or uninstalling the app.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Updated versions will be published on this page with a new effective date.
10. Contact
Questions about privacy or support can be sent to [email protected]