pilo.media (this site)
This marketing site sets no tracking cookies. There is no Google Analytics, Facebook Pixel or any other ad-network tracker. Only the browser's own automatic mechanisms (HSTS etc.) are in play.
api.pilo.media/admin/ (admin panel)
The admin panel uses one short-lived cookie when you sign in to keep the JWT between page reloads. It's cleared on sign-out.
Pilo PC application
The file %LOCALAPPDATA%\Pilo\state.dat stores, encrypted with DPAPI:
- Access and refresh JWTs
- The active license token
- The device hardware id (SHA-256 prefix)
DPAPI runs in CurrentUser scope — another Windows user on the same machine cannot decrypt this file.
Pilo Android application
The same data is stored in EncryptedSharedPreferences (Tink AES-GCM). When the phone is locked, full-disk encryption applies on top.
Clipboard sync
No history is kept. Copied text is forwarded directly to the paired device and is not persisted on our servers.
Third-party cookies
During social login, Google / Facebook / Apple may set their own cookies on their own domains while you authenticate. Those cookies are controlled by the respective provider, not by Pilo. See our Privacy Policy for details.