Privacy Policy
Last updated: August 29, 2025
Overview​
Pinepods is an open-source, self-hosted podcast management system released under the GNU General Public License v3.0 (GPL-3). This privacy policy explains how data is handled when you use Pinepods.
The Self-Hosted Nature​
Important: Pinepods is designed to be self-hosted, meaning you run it on your own server infrastructure. This fundamentally changes the privacy landscape compared to traditional hosted services:
- You control your data: All podcast subscriptions, listening history, user accounts, and preferences are stored on servers you control
- No external data collection: The Pinepods software itself does not collect, transmit, or share your data with external parties
- Your responsibility: Data privacy and security are determined by how you configure and maintain your Pinepods instance
Data Storage and Processing​
What Data is Stored Locally​
When you use Pinepods, the following information is stored on your self-hosted instance:
- User account information: Usernames, email addresses (if provided), and securely hashed passwords
- Podcast subscriptions: Lists of podcasts you've subscribed to
- Listening history: Episode play progress, completion status, and playback positions
- User preferences: Theme settings, playback preferences, and application configurations
- API keys: Generated keys for accessing Pinepods functionality programmatically
- RSS feed data: Cached podcast episode information fetched from external RSS feeds
External Data Sources​
Pinepods fetches publicly available data from:
- Podcast RSS feeds: Episode information, descriptions, and audio file locations
- Podcast indexes: Search functionality may query external podcast directories (like Podcast Index API)
- Chapter and transcript data: When available from podcast feeds
No External Analytics or Tracking​
Pinepods does not include:
- Analytics tracking (Google Analytics, etc.)
- External advertising networks
- Third-party user tracking
- Data transmission to developers or other parties
Your Responsibilities as a Self-Hoster​
Since you control your Pinepods instance, you are responsible for:
- Server security: Keeping your server and Pinepods installation secure and updated
- Data backups: Implementing backup strategies for your data
- Access controls: Managing user accounts and permissions appropriately
- Legal compliance: Ensuring your use complies with applicable laws in your jurisdiction
Multi-User Environments​
If you provide Pinepods access to other users:
- Each user's data is separated within the application
- As the instance administrator, you have technical access to all data stored on your server
- You should inform users about your data handling practices
- Consider implementing your own terms of service for your users
Data Retention​
- Data is retained indefinitely on your server unless you actively delete it
- Users can delete their own accounts and associated data through the application
- Administrators can manage user data through administrative functions
Third-Party Integration​
Pinepods may integrate with external services you choose to configure:
- Authentication providers: If you enable OIDC/OAuth integration
- Notification services: If you configure external notification systems
- Podcast directories: When searching for new podcasts
When using these integrations, you should review the privacy policies of those external services.
Changes to This Policy​
This privacy policy may be updated as Pinepods evolves. Check the documentation for the most current version. As an open-source project, all changes are publicly visible in the project repository.
Contact and Support​
For questions about privacy in Pinepods:
- Review the open-source code to understand exactly how data is handled
- Report security concerns through the project's GitHub repository
- Participate in community discussions about privacy and security
GPL-3 License Implications​
Under the GPL-3 license:
- You have the right to examine, modify, and redistribute the Pinepods source code
- Any modifications you make must also be released under GPL-3 if distributed
- You can verify exactly how your data is being processed by reviewing the source code
Remember: The privacy of your Pinepods data is primarily determined by how you secure and configure your self-hosted instance, not by the Pinepods software itself.