Privacy Policy

Last updated: 2026-07-07

This policy explains exactly what MuxPad does and does not do with your information. In short: MuxPad is a native tmux terminal client that connects only to servers you choose. The developer collects none of your data, and the app contains no advertising and no analytics or tracking SDKs.

Overview

MuxPad ("the app") is an iPad-first, iPhone-supported native tmux terminal client for iOS and iPadOS 17 and later. It connects over SSH to remote servers that you configure and runs tmux in control mode. All configuration and connection data lives on your own device and, only if you enable iCloud sync, in your own iCloud account. The developer operates no servers that receive your data, shows no ads, and includes no analytics or tracking SDKs.

What the app handles and where it is stored

The app works with a few kinds of information. Here is what each is and where it is kept.

Server connection metadata

MuxPad organizes connections as four entities:

This metadata (host address, port, username, display name, group, sort order, theme, tmux session name and layout) is stored on your device using SwiftData. If you turn on iCloud sync, it is also stored in your own iCloud through Apple's CloudKit private database, synced on change and on launch. Only you can access it; the developer cannot.

Credentials

Passwords, private keys, and passphrases are stored only in your device Keychain. They are never written into the app's CloudKit metadata. If you enable iCloud sync, credentials sync between your own devices through Apple iCloud Keychain, which is end-to-end encrypted; the synced metadata contains only an opaque reference (secretRef) that points to the secret in the Keychain, never the secret itself. You can require Face ID or Touch ID to access stored credentials.

Data sent to your server

When you connect, MuxPad sends to the server you chose only what you direct it to send: SSH authentication, and the commands, keystrokes, and file data of your session. This traffic goes to your own server over SSH and is never routed to or through the developer. Host key fingerprints are verified against known_hosts to warn you about possible man-in-the-middle changes.

Live Activity

When sessions are connected, MuxPad can show a single unified Live Activity on the Lock Screen and in the Dynamic Island. It displays only non-sensitive session information — the tmux session name and the user@host label — so you can tap to return to the app. It never contains passwords, keys, or session contents, and the activity ends automatically when the app closes.

What is sent to the developer

Nothing. The app sends no usage statistics, diagnostics, crash logs, credentials, file contents, or any other data to the developer or to any developer-operated server. There is no developer backend at all.

Third parties

The only third party involved is Apple, and only when you choose to use iCloud. If you enable iCloud sync, your metadata is stored in your own iCloud account (Apple CloudKit private database) and your credentials sync through your own iCloud Keychain; both are governed by Apple's iCloud terms and privacy policy, and the developer has no access to that data. The app integrates no other third-party services, advertising networks, or analytics providers. The servers you connect to are chosen and operated by you, not by the developer.

Retention and deletion

Your data stays only where you put it — on your device and, if enabled, in your own iCloud. The app keeps information until you remove it:

The developer holds no copy of your data and therefore cannot retrieve or delete it on your behalf.

Children

MuxPad is a developer tool and is not directed to children. The developer does not knowingly collect personal information from children.

Contact

Questions about this policy or your privacy: okdohyuk@gmail.com. Source code and issues are available in the project's public repository at github.com/okdohyuk/muxpad.

Changes

We may update this policy from time to time. Material changes will be posted on this page with a new "Last updated" date. Continued use of the app after an update constitutes acceptance of the revised policy.