Privacy Policy

Commands, configs, regex patterns, URLs, JSON, YAML, JWTs, and text you paste into core tools are processed in your browser by default. Unless a feature clearly states that a backend call is required, we do not intentionally upload, store, or share that tool input.

When you register, sign in, or use features that require identity, we process necessary information such as email, nickname, avatar, login method, login time, login IP, and account security status. This supports authentication, account recovery, abuse prevention, and service security.

If you choose to sign in with Google or GitHub, we receive the basic information needed to create and identify your account (such as email, a third-party account identifier, nickname, or avatar). We only read the fields required to complete sign-in and account linking; we do not post on your behalf and never receive your third-party password.

For registration, sign-in, password changes, or email changes, we may send you verification codes or notification emails. To deliver them, we process the recipient email, the email scenario, delivery status, and necessary error logs. Verification codes are typically valid only for a short time. Delivery is handled by a third-party email provider, which is used solely to send verification and notification emails; we do not sell your email or use it for third-party marketing lists.

To defend against bot registration, brute-force attempts, and API abuse, sensitive actions such as login and registration may use Cloudflare Turnstile human verification. Provided by Cloudflare, it helps determine whether a request comes from a real user and is not used for cross-site advertising tracking.

To understand which tools are most used, investigate page or API anomalies, prevent free-quota abuse, and optimize performance, we record limited operational data such as tool code, request time, response status, API latency, broad browser/device information, and IP or processed source information. This is used in aggregate for product improvement and security purposes, not for third-party advertising.

To provide continuity, we may use browser LocalStorage for language, theme, tool drafts, interface preferences, or sign-in state. This data lives in your device and browser, and you can clear it through your browser settings at any time.

When you sign in, we use a necessary sign-in token to maintain your session, and may use a small number of cookies or local storage items to support security checks (such as human verification) and basic functionality. We do not use third-party advertising or cross-site tracking cookies. Signing out or clearing your browser data removes local session information.

To protect the website and user accounts, we keep necessary security logs such as failed sign-ins, unusual requests, API frequency, operation time, and source information. These logs help investigate attacks, debug incidents, limit abuse, and support security audits.

Running OpsKit.cc relies on several third-party providers, which may include Cloudflare Pages / CDN / Turnstile, Google and GitHub OAuth, a third-party email provider, our own backend server, and logging and monitoring systems. These services support website operation, security, sign-in authorization, email delivery, and performance; they are not used to sell data or serve ads, and these third parties may process necessary technical data under their own privacy policies.

Account information is retained while the account exists. Security logs, usage analytics, and tool usage statistics are kept for a reasonable operational period. Browser local data is controlled by your device. Legal, security, or dispute needs may require longer retention in limited cases.

You can email us to request deletion of your account and its associated account data. For security, abuse-prevention, and legal-compliance reasons, some security logs may be retained for a limited period before being cleared. After deletion, sign-in and personalization features that depend on the account will no longer be available.

You may use most public tools as a guest, clear browser local data, sign out, or contact us for account-related requests. For access, correction, deletion, or other privacy questions about account data, reach us by email.