Privacy Policy

1. Who we are

Muleline is developed and operated by ArchforgeDev. We build self-hosted software tools that put users in control of their data. Questions about this policy can be directed to [email protected].

2. Self-hosted instances

If you run Muleline on your own server, we have zero access to your data. Your files, photos, metadata, face recognition data, and activity logs never leave your infrastructure. There is no telemetry, no check-in to external servers, and no license validation that phones home.

The self-hosted version is MIT licensed. You own it completely.

3. Muleline Cloud (muleline.win)

The optional managed cloud service is hosted on infrastructure operated by ArchforgeDev. When you create a cloud account:

• Email address — used to create and identify your account, and for transactional communications (password reset, billing receipts).
• Files and photos — stored on the storage backend you configure (S3, R2, Dropbox, local, etc.). We have technical access to your server but do not review or process your files.
• Usage metadata — upload counts, storage size, and error logs may be retained for billing accuracy and service reliability. This data is not sold or shared.

We do not use your cloud account data for advertising, profiling, or any purpose beyond operating the service you signed up for.

4. The mobile app

The Muleline mobile app (iOS and Android) connects only to the server you configure — either your own self-hosted instance or your muleline.win account. The app does not communicate with any ArchforgeDev servers unless you use the cloud service.

The app requests access to:

• Photo library — to read photos for backup. The app never uploads without your explicit action or configured auto-backup settings.
• Device storage — to cache thumbnails and offline content locally. Cached data stays on your device.

The app contains no advertising SDKs, no analytics libraries, and no crash reporting tools that transmit data to third parties.

5. AI features

Face recognition, photo classification, and smart search all run on the server hosting your Muleline instance — whether that is your own machine or a muleline.win cloud server. Your photos are not sent to external AI APIs for processing. The optional Gemini Vision classification feature requires a Gemini API key that you provide; in that case, photo data is sent to Google's Gemini API under their terms of service.

6. Authentication

Muleline uses JWT tokens for authentication. On the mobile app, tokens are stored in secure device storage (iOS Keychain, Android Keystore) and are never exposed to other apps. Tokens expire on a rolling schedule and can be revoked by logging out.

7. Cookies and tracking

The muleline.win website and web app use session cookies only for authentication purposes. There are no third-party tracking cookies, no advertising pixels, and no analytics scripts (not even privacy-friendly ones). If you visit this page, no data about your visit is collected or retained.

8. Data sharing

We do not sell, rent, trade, or otherwise share your personal data with third parties. The only exceptions are:

• Legal requirements: if compelled by valid legal process, we will comply and will notify you where permitted by law.
• Infrastructure providers: cloud server hosting providers (e.g., Hetzner) may process traffic data under their own privacy policies, but do not receive your user data from us.

9. Data deletion

Self-hosted users control their own data entirely — delete your database and files at any time.

Cloud users can request full account and data deletion by emailing [email protected]. We will delete your account, files, and all associated metadata within 14 days and confirm by email.

10. Children's privacy

Muleline is not directed at children under 13. We do not knowingly collect personal data from anyone under 13. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

11. Changes to this policy

If we make material changes to this policy, we will update the effective date at the top of this page. We will not reduce your privacy rights without notice. Continued use of the service after changes constitutes acceptance of the updated policy.