Privacy Policy
Last updated: March 18, 2026
This Privacy Policy describes how Bubble SSH ("we", "us", or "the App"), developed by Okara Soft, handles information when you use our Android application. We are committed to protecting your privacy and being transparent about our data practices.
1. Information We Collect
1.1 Information You Provide
The following information is provided by you and stored locally on your device only:
- SSH connection settings — server hostname, port number, username, and authentication type
- SSH keys — private keys (generated or imported) and their corresponding public keys
- SSH known hosts — server host key fingerprints for TOFU (Trust On First Use) verification
- Passwords — if you choose password-based authentication (stored locally only)
- Terminal preferences — font size, theme, key bar shortcuts, and other UI settings
None of this information is transmitted to us or any third party. All data remains in the app's private storage on your device.
1.2 Information Collected Automatically
Bubble SSH automatically collects the following information to improve app quality:
- Crash reports — Through Firebase Crashlytics, we collect technical diagnostic information when the app crashes, including stack traces, device model, OS version, and app version
- Usage analytics — Through Firebase (Google Analytics), we collect anonymized event data such as screen views and basic app usage patterns
We do not collect:
- Advertising IDs
- Location data
- Contact information
- SSH connection destinations or terminal input/output content
1.3 Purchase Information
When you subscribe or purchase a license, the transaction is processed through Google Play Billing and managed by RevenueCat. RevenueCat receives:
- An anonymous customer ID (not linked to your personal identity)
- Purchase transaction data (product, price, subscription status)
- Platform information (Android, app version)
We do not receive or store your payment method details (credit card numbers, etc.). These are handled entirely by Google Play.
2. How We Use Information
| Data | Purpose | Storage |
|---|---|---|
| SSH connection config | Establishing SSH connections to your servers | Local device only |
| SSH keys | Authenticating with your servers | Local device only |
| Known hosts | Verifying server identity (TOFU) | Local device only |
| Terminal preferences | Customizing the terminal experience | Local device only |
| Crash reports (via Firebase Crashlytics) | Improving app stability and fixing bugs | Google servers |
| Usage analytics (via Firebase Analytics) | Improving the app and optimizing features | Google servers |
| Purchase data (via RevenueCat) | Validating subscription/license status | RevenueCat servers |
3. Third-Party Services
3.1 RevenueCat
We use RevenueCat to manage in-app subscriptions and purchases. RevenueCat processes purchase data as described in their privacy policy. RevenueCat does not receive your SSH credentials, connection data, or any personal information beyond what is necessary for purchase management.
3.2 Google Play Billing
Purchases are processed through Google Play. Google handles all payment processing. We receive only confirmation of purchase status, not payment details.
3.3 Firebase (Google Analytics & Crashlytics)
We use Firebase to improve app quality and maintain stability.
- Firebase Crashlytics — Collects crash reports to help us quickly identify and fix bugs. Data collected includes stack traces, device information (model, OS version), and app version.
- Google Analytics for Firebase — Collects anonymized usage data (screen views, basic app events) to help us improve features.
These services do not collect your SSH credentials, connection data, or terminal input/output content. For details on how Firebase processes data, see the Firebase Privacy Policy.
3.4 No Advertising Services
Bubble SSH does not integrate any advertising SDKs.
4. Data Storage and Security
- All user data (connection configs, SSH keys, preferences) is stored in the app's private storage directory on your Android device, accessible only to the Bubble SSH app.
- SSH private keys are stored with restricted file permissions.
- All network communication with your SSH servers uses the encrypted SSH protocol.
- We do not maintain any servers that store your data.
5. Data Sharing
We do not sell, trade, or share your personal information with third parties. The only data shared externally is:
- Purchase transactions — processed by Google Play and managed by RevenueCat
- SSH traffic — encrypted communication between your device and the servers you choose to connect to
6. Data Retention and Deletion
- Local data: You can delete all app data at any time through Android Settings → Apps → Bubble SSH → Storage → Clear Data, or by uninstalling the app.
- Purchase records: RevenueCat retains purchase records as required for billing and tax compliance. You can request deletion by contacting us.
7. Children's Privacy
Bubble SSH is not directed at children under the age of 13. We do not knowingly collect personal information from children.
8. Permissions
The app requests only the following Android permissions:
| Permission | Purpose |
|---|---|
| INTERNET | Establishing SSH connections to remote servers |
| ACCESS_NETWORK_STATE | Monitoring connectivity for auto-reconnect |
| FOREGROUND_SERVICE | Keeping SSH sessions alive in the background |
| POST_NOTIFICATIONS | Displaying bubble notifications and session status |
9. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically.
10. Contact Us
If you have questions or concerns about this Privacy Policy, please contact us at: