SPConnect for Android Privacy Policy

This document provides privacy information related to the SPConnect mobile app for Android. All data that is collected and stored on the local device is used for the operation of the app. We do not collect personal information nor is any data sent to third party companies or servers. There are no ads in this product.

Sensitive Data and Security

To use the app, it is necessary to provide configuration information to connect to a Microsoft SharePoint server. The configuration data is stored on the device for easy login. The data includes username and password which are saved in unencrypted form on the device. We depend on the encryption capabilities of the Android device to keep all data on the device safe. The encryption capabilities will vary by the device model and Android version. Complaint Android devices with version 6 and greater has encryption automatically enabled.

The specification of the login password is optional. If not provided in the configuration definition, you are prompted for the password each time you connect to the SharePoint site. If connecting to an Office 365 site, you can avoid storage of username and password when you use the “Office 365 Web” authentication method. The device browser is used to login a user by attaining an authentication cookie that the app uses for the duration of the user’s session. The user can explicitly delete the session cookie at any time.

External Storage Permission

External storage permissions is required by the app to allow the user to open a document for viewing and editing. The document is downloaded to the device’s external storage before it is passed to a third party document editor app for viewing and editing. You can also download documents to the device for offline viewing. Again the privacy of these documents depends on the Android device encryption capabilities.

Caching

SharePoint data is cached on the device for performance reasons such as reducing network traffic over a slow network. As you browse a SharePoint site, the app stores meta-data about document libraries and lists. Caching can be disabled in the app’s settings. You may want to disable caching if you are using SPConnect on a local Wi-Fi. The user can explicitly delete cached data at any time.

Network Security

SPConnect uses the http protocol to communicate and transmit data with the SharePoint server. It is important that the networked data is encrypted when using SPConnect in a public network (i.e. cellular data network or public Wi-Fi). It is suggested that the server be configured to use SSL (Secure Socket Layer or https) to properly encrypt the transmitted data between the Android device and the SharePoint server. Although SPConnect supports the usage of a self-signed server SSL certificate, it is not safe. We advised that you attain a valid SSL certificate signed by a well known certificate authority.

Photos

SPConnect allows the user to upload images from the device’s photo album to SharePoint server. Use SSL to ensure safe transmission of files.

Calendar Sync

Calendar permission is used by the calendar sync feature. If not using this in-app purchase feature, calendar access is never used by SPConnect. The calendar sync feature allows you to open a SharePoint calendar using an Android calendar app. It provides 2 way sync between a SharePoint calendar and an Android calendar.

Contacts Sync

Contacts permission is used by the contacts sync feature. If not using this in-app purchase feature, contacts access is never used by SPConnect. The contacts sync feature allows you to open a SharePoint contacts list using an Android contacts app. It provides 2 way sync between a SharePoint contacts list and an Android contacts list.

Contact Us

If you have any questions, please contact us at info@acquirednotions.com .