Privacy policy

What we collect, why we collect it, and how long we keep it.

Last updated: May 29, 2026

Overview

Sharnix ("we", "us") operates relay.sharnix.com, a managed preview tunnel service. This policy describes personal and usage data we process when you create an account, run the Sharnix agent, create share links, or visit a preview URL.

Data we collect

Account data — email address, display name, organization name, authentication provider identifiers (Google or GitHub OAuth), and billing metadata when you upgrade.

Agent & tunnel metadata — API key fingerprints (not the full secret after creation), tunnel IDs, project labels, connection timestamps, and agent version.

Share-link access data — when someone opens a preview link we may record timestamp, IP address, country (derived from IP), user agent, referrer, and access result (allowed, denied, paused). Pro and Team plans include analytics and audit logs built from this data.

Email OTP data — if you gate a link with email restrictions, we send one-time codes and store minimal verification state until the code expires.

Support & abuse reports — messages you send us, plus reporter IP when someone submits an abuse report on a preview page.

Preview traffic

Sharnix proxies HTTP and WebSocket traffic between visitors and your local application while a tunnel is active. We do not store your application source code on our servers. We do not intentionally persist the body of proxied requests or responses except where required for short-lived operational processing (for example, read-only HTML rewriting) or optional Preview Hold features if enabled on your plan.

How we use data

  • Provide, secure, and operate the service
  • Authenticate users and enforce link permissions (email, login, IP, geo)
  • Send service emails (magic links, OTP codes, disconnect alerts on paid plans)
  • Process payments through Stripe
  • Detect abuse, fraud, and violations of our Terms
  • Improve reliability and support customers

Retention

Account data is kept while your account is active. You may request deletion by emailing hello@sharnix.com.

  • Share-link analytics: up to 30 days on Pro; extended on Team
  • Audit logs: 30 days on Pro; up to 12 months on Team
  • Abuse reports: retained as needed for investigation and legal compliance
  • Billing records: retained as required for tax and accounting

Subprocessors

We use trusted providers to run Sharnix, including:

  • Stripe — payment processing (we do not store full card numbers)
  • Email delivery provider — authentication and notification emails
  • Cloud infrastructure — hosting the relay, dashboard, and databases
  • MaxMind or equivalent — country lookup for geo allowlists and analytics

We do not sell personal data.

Cookies

The dashboard uses session cookies to keep you signed in. Share links may set cookies to bootstrap authenticated preview sessions on subdomains. We do not use third-party advertising cookies.

Your choices

  • Revoke share links or delete tunnels from the dashboard at any time
  • Use read-only links and expiry to limit exposure
  • Request account deletion at hello@sharnix.com
  • Contact us to access or correct account information

Contact

Privacy questions: hello@sharnix.com
Abuse reports: abuse@sharnix.com