AppDropTerms of Service

Privacy Policy

Last updated: April 29, 2025

What is AppDrop?

AppDrop is an open-source tool that lets you upload iOS (.ipa) and Android (.apk) build files to your own Google Drive and share install links with testers — without the App Store or Google Play. The source code is publicly available at github.com/navneetprajapati26/run-ipa.

Information We Collect

We collect only what is necessary to provide the service. Specifically:

  • Google account information — your name, email address, and profile picture, obtained via Google OAuth when you sign in. This is used solely to identify your session.
  • Google Drive access token — a short-lived OAuth token that allows AppDrop to upload and manage files in your Drive. This token is stored only in your encrypted session cookie and is never written to any database.
  • Build files you upload — IPA and APK files you choose to upload are stored directly in your own Google Drive account under the folders IPA-OTA and APK-OTA. We do not store these files on our servers.
  • Build metadata — app name, bundle/package ID, version, and your chosen display name are stored in the Google Drive file's description field, not in any external database.

Google Drive Permissions

AppDrop requests the drive.file OAuth scope. This is the most restrictive Drive scope available:

  • AppDrop can only access files it has created itself.
  • AppDrop cannot read, modify, or delete any other files in your Drive.
  • You can revoke access at any time from your Google Account permissions.

How We Use Your Information

  • To authenticate you via Google Sign-In.
  • To upload and manage your build files in your own Google Drive.
  • To generate install links and download manifests for your builds.

We do not sell, share, or transfer your personal information to any third party. We do not use your information for advertising or any purpose beyond operating the service.

Data Storage

AppDrop has no database. Your session is stored in an encrypted JWT cookie in your browser. Your build files and metadata live entirely in your own Google Drive. Deleting a build through AppDrop deletes it from your Drive. When you revoke AppDrop's access, we have no remaining access to any of your data.

Cookies

AppDrop uses a single session cookie to keep you signed in. This cookie contains your encrypted Google OAuth token and basic profile information. No third-party cookies or tracking scripts are used.

Analytics & Tracking

AppDrop does not use any analytics, tracking pixels, or monitoring services. No data about your usage is collected beyond what is described above.

Data Retention

We retain no data on our servers. Your build files are in your Google Drive and can be deleted by you at any time, either through AppDrop or directly in Google Drive. Your session cookie expires when you sign out or your browser clears cookies.

Children's Privacy

AppDrop is intended for software developers and testers. We do not knowingly collect information from anyone under the age of 13.

Open Source

AppDrop is fully open source. You can inspect exactly what data is collected and how it is used by reading the source code at github.com/navneetprajapati26/run-ipa.

Changes to This Policy

If this policy changes materially, the updated version will be committed to the repository and the "Last updated" date above will be revised. Continued use of AppDrop after changes constitutes acceptance of the updated policy.

Contact

Questions or concerns? Open an issue on GitHub.