Privacy Notice

CupidLeaks is built for data minimization. This page explains what personal data is processed and to what extent.

Controller

Hagen Aad Fock, Sechsschimmelgasse 3, 1030 Vienna, Austria.
Email: [email protected]

Uploaded data exports

When you upload an export on the Analyze page, it is unpacked and processed solely inside your browser. There is no transmission to a server, no server-side storage, no content logging. Processing runs in a Web Worker and terminates when you close the page or click "Discard data".

Theme & language preference

Your theme (dark/light) and language preference are stored in your browser's localStorage (keys cupidleaks.theme, cupidleaks.lang). These values never leave your device.

Server logs

The web server logs technical request data (anonymized IP, user agent, requested URL, timestamp) solely for operational security and deletes those logs after at most 14 days. Analysis occurs only on suspicion of abuse.

Cookies

No tracking cookies, no advertising cookies, no third-party cookies are set. No cookie banner is therefore required.

External services

No external fonts (e.g. Google Fonts), no CDNs, no ad networks, no third-party analytics pixels are loaded. All assets are served from the project's own server.

Analytics (planned)

Anonymous reach measurement via a self-hosted Umami instance is planned. It is cookieless, assigns no identifiers and does not link data with other sources. No reach measurement is in place until activation.

Your rights

Under GDPR you have rights of access, rectification, erasure, restriction, portability, and objection. Since the operator stores no personal data, these rights are largely moot — for server logs they remain enforceable upon request.

Supervisory authority

Complaints may be lodged with the Austrian Data Protection Authority, Barichgasse 40–42, 1030 Vienna, dsb.gv.at.