Privacy Policy

Last updated: January 1, 2025

1. Overview

This policy describes what data pxdrop collects, why we collect it, and how it is used.

2. What We Collect

Server-side (every request):

• IP address — rate limiting, abuse prevention, security
• User agent — browser name, version, and OS
• Request path — which page you visited
• Referer header — the page that linked you here
• Timestamp — when the request was made

Client-side (collected via JavaScript on each page load):

• Screen resolution — screen width, height, pixel ratio, color depth
• Viewport size — browser window dimensions
• Platform & OS — operating system identifier
• Language — browser language and preferred languages
• Timezone — timezone name and UTC offset
• Connection info — network type (4G, WiFi) and estimated bandwidth
• Hardware info — CPU core count, device memory, touch support
• GPU info — WebGL vendor and renderer strings
• Browser capabilities — cookie support, Do Not Track setting, PDF viewer
• Page context — current URL and referring page

When you upload an image:

• The image file itself
• Original filename, file size, and content type
• Upload timestamp

3. What We Do NOT Collect

• No cookies
• No third-party trackers (Google Analytics, Facebook Pixel, etc.)
• No personal information (name, email, phone number)
• No cross-site tracking
• No keystroke or form input logging

4. How We Use Your Data

Visit logs are used for:

• Abuse prevention and rate limiting
• Security monitoring (detecting attacks, scraping, etc.)
• Aggregate usage analytics (page view counts, unique visitor counts)
• Debugging technical issues

Uploaded images are stored and served when the shareable link is accessed. Images are not analyzed, scanned, or processed for any purpose other than serving them.

5. Data Storage

All data is stored on our servers. Visit logs and image metadata are kept in a SQLite database. Images are stored on the filesystem.

6. Data Retention

Visit logs are retained indefinitely for security purposes. Uploaded images are stored permanently unless deleted by the uploader using their delete token.

7. Data Deletion

When you upload an image, you receive a delete token. You can use this token to permanently delete your image and its associated metadata at any time.

8. Third Parties

We do not sell, trade, or transfer your data to third parties. We do not use any third-party analytics, advertising, or tracking services. The only external service loaded is Google Fonts for typography.

9. Changes to This Policy

We may update this policy from time to time. Changes will be reflected on this page with an updated date.

10. Contact

For privacy-related questions, please visit our contact page.