Om Rajguru avatarprojects
Home

Privacy Policy

How I collect, protect, retain, and handle data, with no data sales, no ads, and privacy by default.

Privacy is a core design principle of the Services. I do not build products around advertising surveillance, user tracking, data brokerage, or the sale of personal information.

User data is not a product.

Om Rajguru

I collect only the information reasonably necessary to operate, secure, maintain, provide, support, and improve the Services.

Introduction

This Privacy Policy explains how I, Om Rajguru, referred to as I, me, or my, collect, use, store, protect, disclose, and process information in connection with the software, applications, websites, APIs, platforms, tools, repositories, documentation, hosted services, self-hosted software, developer tools, and related offerings that I make available. These offerings are collectively referred to as the Services.

This Privacy Policy applies to current and future Services unless a specific Service provides a separate privacy notice or additional privacy terms.

By accessing or using the Services, you acknowledge the practices described in this Privacy Policy.

Privacy Commitments

  • I do not sell personal information.
  • I do not rent personal information.
  • I do not trade personal information.
  • I do not broker personal information.
  • I do not operate advertising networks.
  • I do not use personal information for targeted advertising.
  • I do not create advertising profiles based on user activity.
  • I do not share personal information with third parties for cross-context behavioral advertising.
  • I do not voluntarily provide user data to governments, law enforcement agencies, intelligence agencies, regulators, or other public authorities.
  • I collect only what is reasonably necessary for the relevant Service.
  • I retain information only for as long as reasonably necessary.
  • I design Services to minimize unnecessary collection, retention, and exposure of user data.

Scope

This Privacy Policy applies to Services that I operate, provide, maintain, or control.

This Privacy Policy applies to hosted Services, official websites, official APIs, accounts, dashboards, repositories, support communications, documentation, and other official infrastructure operated by me.

This Privacy Policy does not automatically apply to independently operated self-hosted deployments of my software. Operators of self-hosted deployments are responsible for their own privacy practices, security practices, user notices, data protection obligations, and legal compliance.

If a self-hosted deployment connects to infrastructure, APIs, update systems, licensing systems, authentication systems, official integrations, or other Services operated by me, limited technical information may be processed as necessary to provide, secure, or maintain that connection.

Services With No Backend, Cookies, or Tracking

  • Some Services may operate without a backend controlled by me.
  • Some Services may operate without accounts.
  • Some Services may operate without cookies.
  • Some Services may operate without analytics.
  • Some Services may operate entirely in your browser, device, local environment, or self-hosted infrastructure.

Where a Service does not require backend processing, accounts, cookies, analytics, or stored user data, I do not intentionally add those systems unless they are reasonably necessary for the operation, security, maintenance, or improvement of that Service.

Information I May Collect

Depending on the Service, I may collect or process limited categories of information.

Account Information

Account information may include your name, username, email address, authentication information, profile information, account settings, workspace information, and information you voluntarily provide.

Service Information

Service information may include preferences, configuration settings, project settings, subscription status, usage settings, and feature choices.

Technical Information

Technical information may include IP address, browser type, device information, operating system, request metadata, timestamps, pages or endpoints accessed, referrer information, diagnostic data, and error reports.

Security Information

Security information may include authentication logs, access logs, abuse-prevention signals, rate-limit data, security event logs, token usage metadata, and information necessary to detect, prevent, or investigate abuse or security incidents.

Communication Information

Communication information may include emails, support requests, bug reports, vulnerability reports, feature requests, feedback, and other messages you send to me.

User Content

User Content may include content, code, files, text, media, prompts, outputs, configuration data, or other materials that you voluntarily submit, upload, store, transmit, process, or generate through a Service.

Payment and Billing Information

Payment or billing information may be processed if a Service requires payment. Payment information may be handled by third-party payment providers. I do not intentionally store full payment card numbers unless expressly stated for a specific Service.

Information I Do Not Intentionally Collect

Unless expressly required by a specific Service, I do not intentionally collect government identification numbers, biometric identifiers, precise location data, financial account credentials, health information, children’s personal information, or other sensitive personal information unrelated to providing the Service.

  • I do not intentionally collect more information than is reasonably necessary for the relevant Service.

How Information Is Used

I may use information only for legitimate and limited purposes, including providing the Services, operating the Services, maintaining functionality, authenticating users, securing accounts, preventing abuse, preventing fraud, enforcing applicable policies, monitoring reliability, debugging errors, providing support, responding to requests, processing payments where applicable, complying with legal obligations, and improving Service quality.

  • I do not use personal information for targeted advertising.
  • I do not use personal information to build advertising profiles.
  • I do not sell or rent personal information.

Legal Bases for Processing

Where applicable law requires a legal basis for processing personal information, I may process personal information based on performance of a contract, legitimate interests, consent, compliance with legal obligations, protection of rights and safety, or another lawful basis recognized by applicable law.

Legitimate interests may include operating the Services, securing the Services, preventing abuse, improving reliability, responding to support requests, and protecting users and infrastructure.

Where processing is based on consent, you may withdraw consent where applicable.

Cookies and Similar Technologies

Some Services may use cookies, local storage, session tokens, or similar technologies only where reasonably necessary for authentication, security, user preferences, session management, essential functionality, or reliability.

  • I do not use cookies for advertising.
  • I do not use cookies for behavioral advertising.
  • I do not use cookies to operate an advertising network.
  • Some Services may not use cookies at all.

Analytics and Telemetry

Many Services may operate without analytics or telemetry.

Where analytics or telemetry are used, they are intended to understand reliability, performance, security, errors, feature usage, and Service quality.

  • I aim to collect the minimum information reasonably necessary for these purposes.
  • I do not use analytics or telemetry for advertising profiling.

Where practical, self-hosted Services should provide configuration options for telemetry or external connections.

User Content

You retain ownership of your User Content.

  • I process User Content only as reasonably necessary to operate, secure, maintain, provide, support, or improve the applicable Service, or as otherwise permitted by you.
  • I do not claim ownership of your User Content.
  • I do not sell User Content.
  • I do not use User Content for advertising.

I do not disclose User Content except as described in this Privacy Policy, required by law, necessary to provide the Service, necessary to protect rights or safety, or authorized by you.

Self-Hosted Deployments

For independently operated self-hosted deployments, the operator controls the deployment and the data processed within it.

I generally do not have access to data stored inside independently operated self-hosted deployments unless the operator chooses to connect the deployment to Services operated by me, sends information to me, requests support, submits logs, enables telemetry, uses a hosted integration, or otherwise provides access.

Operators of self-hosted deployments are solely responsible for privacy notices, security, access controls, legal compliance, user rights, data retention, backups, moderation, and incident response.

I am not responsible for the privacy practices of independently operated self-hosted deployments.

Service Providers and Infrastructure

To operate, secure, maintain, or provide the Services, I may use trusted infrastructure and service providers.

These providers may include Amazon Web Services, also known as AWS, Supabase, and Google Cloud Platform, also known as GCP.

AWS is currently a primary infrastructure provider.

Other providers may be used where reasonably necessary for hosting, databases, authentication, storage, email delivery, monitoring, logging, security, payments, support, or other operational needs.

Service providers receive only the information reasonably necessary to perform their functions.

  • I do not authorize service providers to sell personal information.
  • I do not authorize service providers to use personal information for targeted advertising.

Data Location and Cloud Infrastructure

  1. Information may be stored, processed, or transmitted through cloud infrastructure used to operate the Services.
  2. Data may be processed in locations where my infrastructure providers operate.

Data does not intentionally leave the infrastructure and service providers used to operate, secure, maintain, or provide the Services, except as described in this Privacy Policy, authorized by you, required by applicable law, or necessary to protect rights, safety, security, or the integrity of the Services.

Sharing and Disclosure

  • I do not sell personal information.
  • I do not rent personal information.
  • I do not trade personal information.
  • I do not disclose personal information to third parties for targeted advertising.

I may disclose information only where reasonably necessary to provide the Services, to trusted service providers, with your consent, to comply with a valid legal obligation, to enforce terms and policies, to prevent abuse or fraud, to protect rights, safety, security, or property, or in connection with a legitimate business transfer such as a merger, acquisition, restructuring, or transfer of assets.

Government and Law Enforcement Requests

  • I do not voluntarily disclose user information to governments, law enforcement agencies, intelligence agencies, regulators, or other public authorities.
  • I require valid and binding legal process before disclosing user information.

Where legally permitted, I will review requests for validity, require requests to be specific and properly scoped, challenge or object to unlawful, overbroad, vague, disproportionate, or improper requests, seek to narrow the scope of requests, notify affected users before disclosure where reasonably practicable, and disclose only the minimum information legally required.

  • I do not provide bulk access.
  • I do not provide direct system access.
  • I do not provide backdoor access.
  • I do not provide continuous surveillance access.
  • I do not voluntarily assist with mass surveillance.

Nothing in this Privacy Policy requires me to disclose information beyond what is legally required.

Data Retention

I retain information only for as long as reasonably necessary for the purposes described in this Privacy Policy.

Retention periods may vary depending on the Service, the type of information, operational needs, security needs, legal requirements, dispute resolution, abuse prevention, and backup systems.

Information may be deleted, anonymized, aggregated, or de-identified when it is no longer reasonably necessary.

Security logs, abuse-prevention records, billing records, and legal records may be retained for longer where necessary to protect the Services, prevent abuse, resolve disputes, comply with legal obligations, or enforce policies.

Data Security

I use reasonable administrative, technical, and organizational safeguards designed to protect information against unauthorized access, disclosure, alteration, misuse, loss, or destruction.

Security measures may include encryption in transit, access controls, least-privilege practices, secure infrastructure providers, monitoring, logging, backups, dependency management, and vulnerability handling.

No system can guarantee absolute security.

You are responsible for securing your own devices, accounts, credentials, API keys, tokens, deployments, integrations, backups, and self-hosted infrastructure.

Account and Credential Security

You are responsible for maintaining the confidentiality and security of your accounts, passwords, API keys, tokens, access credentials, and authentication methods.

You should promptly contact me if you believe your credentials or account have been compromised.

I may suspend, rotate, revoke, or restrict credentials where necessary to protect users, infrastructure, the Services, or third parties.

Children’s Privacy

The Services are not directed to children below the age required by applicable law to independently use online services.

I do not knowingly collect personal information from children in violation of applicable law.

If you believe that a child has provided personal information in violation of applicable law, contact me so that appropriate action can be taken.

International Users

The Services may be accessed from different countries.

By using the Services, you acknowledge that information may be processed in India or in other jurisdictions where infrastructure providers, service providers, or operational systems are located.

Where applicable law requires safeguards for international transfers, I will use appropriate safeguards where reasonably required.

Your Rights

Depending on applicable law, you may have rights regarding your personal information.

These rights may include the right to access, correct, update, delete, export, restrict, or object to certain processing of personal information.

You may also have the right to withdraw consent where processing is based on consent.

Requests may be submitted to hello@omrajguru.com.

I may need to verify your identity before responding to a request.

Some requests may be limited by legal obligations, security needs, abuse-prevention needs, technical limitations, backup systems, or the rights of others.

Deletion Requests

You may request deletion of personal information where applicable.

If deletion is legally or technically available, I will take reasonable steps to delete or de-identify the relevant information.

Some information may be retained where necessary for legal compliance, security, fraud prevention, dispute resolution, enforcement of policies, backup integrity, or other legitimate purposes permitted by applicable law.

Open-Source Contributions and Public Activity

If you contribute to open-source projects, participate in public repositories, submit issues, create pull requests, comment in public discussions, or otherwise interact in public project spaces, your username, profile information, contributions, comments, commits, and related metadata may be publicly visible.

Public open-source activity may remain visible through repository history, forks, mirrors, archives, third-party platforms, or version control systems even if you later delete your account or request removal.

Third-Party Links and Services

The Services may link to, integrate with, or depend on third-party websites, platforms, APIs, libraries, packages, infrastructure, authentication providers, payment providers, or other services.

Third-party services are governed by their own terms and privacy policies.

I am not responsible for the privacy, security, or data practices of third-party services that I do not control.

Changes to This Privacy Policy

I may update this Privacy Policy from time to time.

Updated versions become effective when published unless otherwise stated.

If changes are material, I may provide notice through a relevant website, repository, Service, changelog, or other appropriate method.

Continued use of the Services after changes become effective constitutes acceptance of the updated Privacy Policy.

Contact

For privacy-related questions, requests, or concerns, contact:

Om Rajguru
hello@omrajguru.com

Effective Date: 31 May 2026
Last Updated: 31 May 2026