Privacy Policy
Our commitment to your data sovereignty and security.
Zero Uploads
We do not store your data on our servers. Processing happens in your local browser memory.
Local Logic
Every tool executes locally via JavaScript. Your inputs never cross the wire to a backend.
No Tracking
We do not use invasive behavioral trackers or sell your personal information.
1. Data Handling Philosophy
Toolshubkit is built on a "Privacy-First" architecture. Unlike many online developer utilities that transmit your strings, passwords, or files to a cloud server for processing, Toolshubkit performs 100% of its transformations within your browser's execution context. This "Zero-Cloud" approach ensures that your proprietary code, production credentials, and personal information remain strictly on your local machine.
2. Information Collection
Local-First Tools: For most tools, we do not collect personal data. The data you enter is held in volatile memory (RAM) and is permanently cleared when you refresh the page or close the browser tab.
Optional Cloud Storage (Invoice Generator): When you choose to sign in with Google and save invoices to the cloud, we collect and store:
- Authentication Data: Email address and user ID from your Google account (via Google OAuth)
- Invoice Data: Invoice content you explicitly choose to save to cloud storage
- Usage Metadata: Invoice count and timestamps for saved invoices
This data is stored securely in our Supabase database and is only accessible to you. Cloud storage is entirely optional - you can continue using all tools without signing in.
3. Cookies & Analytics
Toolshubkit uses minimal cookies to enhance the user experience, specifically for remembering your theme preference (Light/Dark mode) and language selection. We use Google Analytics (gtag.js) to monitor high-level traffic patterns (such as which tools are most popular) to help us prioritize new features. This data is anonymized and does not include the content you process within the tools.
4. Third-Party Services
We integrate with the following third-party services:
- Google OAuth: For optional user authentication (Invoice Generator). Your email and profile are used solely for authentication. See Google Privacy Policy.
- Supabase: Secure cloud database for optional invoice storage. Data is encrypted at rest and in transit. See Supabase Privacy Policy.
- Lorem Picsum: Placeholder images (external API). Your IP may be visible to their servers.
5. Your Data Rights (GDPR & CCPA)
For Local-First Tools: No personal data is stored on our servers. Your data exists only on your device.
For Cloud-Stored Data (signed-in users): You have the right to:
- Access: View all your stored invoices anytime through the Invoice Generator
- Deletion: Delete individual invoices or your entire account data
- Portability: Export your invoices in JSON format
- Opt-Out: Simply don't sign in and use local storage instead
To request complete account deletion, contact us at our contact page.
6. Data Storage & Security
Cloud Storage (Optional): When you sign in and save invoices to the cloud:
- Data is stored in Supabase's secure infrastructure (PostgreSQL database)
- All connections use HTTPS/TLS encryption
- Row-level security ensures you can only access your own data
- We maintain regular backups of the database
- Default free tier: 50 invoices per user (configurable)
Local Storage: Draft invoices and preferences are stored in your browser's localStorage. This data never leaves your device.
7. Data Retention
Cloud-Stored Invoices: Retained until you delete them or close your account. Inactive accounts (no sign-in for 2+ years) may be deleted with prior email notification.
Local Data: Controlled entirely by you. Cleared when you clear browser data or use our "Reset" button.
Our security model relies on the browser's Same-Origin Policy and sandbox. By executing code locally, we bypass the "Man-in-the-Middle" risks associated with cloud-based formatting services. Your secrets are your own.