Legal

Privacy Policy

Last updated: January 14, 2026

Overview

spore.host is an open-source tool suite for managing AWS EC2 instances. We prioritize your privacy and minimize data collection.

What We Collect

Authentication information

When you sign in to the dashboard through Google, Globus Auth, or GitHub:

• Your email address or username (from OAuth provider)
• Temporary AWS credentials (expire in 1 hour)
• OAuth tokens (stored locally in your browser only)

What we don't collect

• No passwords (OAuth only)
• No browsing history or tracking cookies
• No analytics or telemetry
• No EC2 instance data (stays in your AWS account)

How We Use Your Information

Authentication only: OAuth credentials obtain temporary AWS credentials. All EC2 queries happen directly from your browser to AWS — no data passes through our servers.

Data Storage

• Browser LocalStorage: OAuth tokens and AWS credentials (expire in 1 hour)
• No backend database: We don't store user data on servers
• AWS Cognito: Identity mappings managed by AWS

Third-Party Services

• Google OAuth: Google's Privacy Policy
• Globus Auth: Globus Privacy Policy
• GitHub OAuth: GitHub Privacy Statement
• AWS Cognito: AWS Privacy Notice

Open Source

spore.host is open source under the Apache License 2.0. Audit the code on GitHub.

Contact

Questions? Open an issue on GitHub.

← Back to Home