MySuperToolsSecurity Toolkit

Privacy Policy

Last updated: 3/15/2026

1. Overview

We use a mixed model across MySuperTools: many tools process data locally in your browser, while some features require server-side processing and limited storage. This policy explains what data we collect, why we collect it, and how we protect it.

2. Password Generation & Client-Side Tools

Password generation happens locally in your web browser. For this tool, we do not store your generated passwords on our servers.

  • Store any passwords you generate
  • Transmit passwords over the internet
  • Have access to your generated passwords
  • Track the actual password values you generate

3. Account & Authentication Data

If you create an account, we collect and store account-related data such as your email address, password hash (not plaintext password), verification/reset tokens, session records, and security metadata (for example failed login attempts and last login time).

Authentication uses secure cookies for session handling. We use this data to provide login, account security, and account recovery features.

4. Contact Form Data

When you submit the contact form, we collect the details you provide (name, email, subject, and message). This information is stored in our connected Google Sheets workspace so we can respond to your request.

We may also run AI-assisted triage on contact messages to prioritize and route support requests. Email addresses are redacted before AI classification where supported by our processing flow.

5. Analytics, Cookies & Similar Technologies

We use Google Analytics (when configured) to understand site usage and improve performance. Analytics providers may use cookies or similar technologies and process technical data such as pages visited, browser details, device data, and approximate location.

6. Advertising

Some pages may include advertising components. At the time of this update, ad placements in key pages are disabled in this build, but ad functionality exists in the codebase and may be enabled in the future. If enabled, advertising partners (for example Google AdSense) may collect data according to their own privacy policies.

7. Tool-Specific Server Data

Certain tools require server-side storage or processing. For example:

  • URL shortener features may store original URL, short code, timestamps, and click counts.
  • Security audit features may store submitted responses and generated results.
  • AI features may temporarily cache prompts/results and record aggregate telemetry for reliability and cost monitoring.

8. Payments

Paid billing infrastructure references exist in the project architecture. In this build, payments are currently disabled. If payments are activated later, billing workflows will be processed through payment partners (such as Stripe), and we will update this policy as needed.

9. Security Measures

We apply reasonable technical and organizational measures to protect data, including encrypted transport (HTTPS), access controls, authentication safeguards, and routine security-focused updates.

10. Data Retention

We retain data only for as long as needed to operate features, meet legal obligations, resolve disputes, and enforce agreements. Retention periods may vary by feature and data category.

11. Your Choices & Rights

Depending on your jurisdiction, you may have rights to access, update, delete, or restrict use of your personal data. You may also request account deletion through available account controls or by contacting us.

12. Third-Party Services

We use third-party services (such as hosting, analytics, email, AI, and spreadsheet providers) to deliver features. These providers maintain their own privacy policies and terms.

13. Contact

If you have any questions about this Privacy Policy, please contact us through our contact page.