Privacy Policy
Effective Date: January 1, 2026 · App: DockerTab · com.dockertab.app
Overview
DockerTab is a Docker container management app for iOS. We are committed to protecting your privacy. This policy explains what data is collected, how it is used, and your rights.
What We Collect
Data You Provide
- Device name — used to identify your device when pairing with the DockerTab Agent. Stored locally on your device and on the agent host you control.
- API key / JWT — authentication credentials generated locally. Used only to authenticate with the DockerTab Agent you own and operate.
Data Collected Automatically
- Push notification token (APNs device token) — if you enable notifications, your device token is sent to the DockerTab Relay server to deliver push notifications about container events. It is associated with your agent ID, not your personal identity.
- Container metadata — container names, IDs, and status are fetched from the Docker agent you control and displayed in the app. This data is not retained on our servers beyond the duration of an active session.
- Connection events — the relay server logs connection and disconnection events (agent ID, timestamp) for operational purposes only. IP addresses are not logged or stored.
Data We Do NOT Collect
- We do not collect your name, email address, or any personally identifiable information
- We do not collect or retain the contents of your containers, images, or volumes
- We do not share data with advertisers or data brokers
- We do not use analytics SDKs or tracking frameworks
How We Use Your Data
| Data | Purpose |
|---|
| APNs device token | Deliver push notifications (container started/stopped events) |
| Agent connection info | Route encrypted WebSocket traffic between your iPhone and your agent |
| Purchase receipt (App Store) | Verify active subscription status via Apple's StoreKit API |
Relay Server — Encryption & Data Handling
When connecting remotely, all traffic is encrypted in transit using TLS (WSS). The relay acts as a secure tunnel only — it routes your encrypted messages between your iPhone and your agent without storing, logging, or reading any container data, commands, or responses.
The only data retained on the relay server is your APNs device token (solely to deliver push notifications). All other traffic passes through without persistence.
Third-Party Services
- Apple Push Notification service (APNs) — used to deliver push notifications. Governed by Apple's Privacy Policy.
- Apple App Store / StoreKit — used to process and verify in-app subscriptions. Governed by Apple's Privacy Policy.
No other third-party services receive your data.
Data Storage & Security
- Authentication credentials (JWT, API key) are stored in the iOS Keychain on your device
- APNs device tokens are stored on the DockerTab Relay server, encrypted at rest, and used solely to deliver push notifications
- All communication between the app, relay, and agent is encrypted in transit (TLS/WSS)
- You can revoke relay access at any time from Settings → Agent Settings
Data Retention
APNs tokens are retained until you explicitly unregister (Settings → Agent Settings → Disable Notifications) or the token becomes invalid (Apple unregisters it). We do not retain container data, logs, or session history on our servers.
Children's Privacy
DockerTab is not directed at children under 13. We do not knowingly collect personal information from children.
Your Rights
- Remove your device's push notification token at any time via Settings → Agent Settings → Disable Notifications
- Delete all locally stored credentials by removing the app from your device
Changes to This Policy
We may update this policy from time to time. The effective date at the top reflects the most recent revision. Continued use of the app after changes constitutes acceptance of the updated policy.
Contact
Questions? Email us at support@dockertab.app