Privacy Policy
Updated at
By default, for both visitors only browsing our site or those using our public services (that normally do not require any sort of registrations) and already registered users of our services, we store the minimum amount of connection data that is by default in our Caddy logs. This includes:
- The IP address used to connect
- The user-agent of the application used to connect (Usually, your browser/client, operating system, etc.)
- The exact date and time a connection was made.
We only store these logs for protection of our services in the case of any malicious behavior against our services, and are wiped/overwritten every 5 days.
We do not send data to be processed by anyone/anywhere else. We do not use or have any sort of analytics system in place. We do not use any of this data to "collect" or "profile" any individual. We do not try or attempt to store more data than is strictly necessary.
We ourselves and the services we provide follow the GDPR for storing and managing personal data, and allow for complete deletion of all personal data (if any is stored ourselves) whenever possible.
This website (the Synth.Download homepage, source available here) does not make use of cookies or related technology. We store settings and preferences changed for our site with the menu available in the top right into your browser's local storage, which is otherwise unavailable/not possible if JavaScript is disabled by the client.
For registered users of any of our services, we will also store any extra information that is required by the service or otherwise optionally provided, such as email addresses (for the case or need of verification or password resets) and passwords (securely stored and hashed). What information or data is required or otherwise provided varies from service to service.
As a transparency note, all provided data and information is accessible by all administrators of Synth.Download, but will not be mishandled/misused for any purposes except for the cases of required moderation/administration actions on our end, for a need of emergency contact, or otherwise for any request asked by the user.
Depending on the service, we may have easier access to specific, possibly personal information for account management or service moderation/administrative purposes.
For some services, we utilize Bunny as our public CDN and Backblaze for files and storing whole, encrypted, off-site system backups. Their privacy policies may also apply with our services.
For our Fediverse instances (which includes Sharkey, Iceshrimp and Mastodon), we cannot guarantee 100% privacy. Federation isn't reliable nor private by design, and is a public network where posts made are cloned and stored by other instances with their own administrators.
Direct messages are not completely private or encrypted in any way. Post deletion and edits can be ignored or missed by other instances, although we do attempt to block instances with malicious intents (see moderation for more details). Other instances may have different privacy policies or different ways of handling data and protection standards.
Note that only any information made public by you (your posts, your bio and profile picture, other related information meant to be viewed by others) is what gets federated. Any other private information related to your account such as your email address and passwords will never be federated.
All media uploaded through our instance get uploaded to Backblaze, which stores files, then forwarded through Bunny as our CDN for faster file delivery and media loading. Some software, like Mastodon, have tools to help with personal privacy, such as post auto-deletion.