Sign Up Sign Up

Privacy Policy

How we handle your data, cookies, and your rights as a user.

Back to Home

Jinero is built around the idea that design and developer tools should work in the browser without harvesting personal data. This page explains exactly what we collect, why, and what we never do.

Last updated: 13 May 2026

What we collect

1. Account data (only if you sign up)

Sign-up is optional and only required for saving favourites, collections, or generating an API token. If you register, we store:

  • Email address (for login + password reset)
  • Display name and optional avatar URL
  • Hashed password (bcrypt — we never see the plaintext)
  • OAuth identifiers if you sign in with Google

2. Anonymous usage analytics

We use Google Analytics 4 with anonymised IPs to measure aggregate traffic (page views, popular tools, referrers). No cross-site profiling, no advertising audiences. You can opt out via a browser-level DNT header or by blocking the googletagmanager.com domain.

3. Server logs

Our nginx and Laravel logs retain request URLs, status codes, response times, and IPs for up to 30 days for security and debugging. Logs are not shared with third parties.

What we never do

  • We never sell user data to third parties.
  • We never use behavioural advertising or remarketing.
  • We do not retain file uploads (background remover, image enhancer, etc.) beyond the active session — files are deleted from temp storage after processing.
  • We do not embed third-party trackers beyond Google Analytics.

Cookies

  • jinero_session — first-party cookie that keeps your login state and CSRF protection. Expires after 2 hours of inactivity.
  • XSRF-TOKEN — anti-CSRF token used by Laravel.
  • Google Analytics cookies (_ga, _gid) — opt-outable as described above.

Public Fonts API

Requests to our public Fonts API are logged for rate-limit enforcement (IP + token if provided, rate window) but not associated with browser/account profiles.

Your rights

Under the GDPR, CCPA, and similar regulations, you can request to:

  • Access the personal data we hold about you
  • Delete your account and all associated data
  • Export your data (favourites, bookmarks)

Submit a request via our contact page or email — we respond within 30 days.

Children

Jinero is not directed at children under 13. We do not knowingly collect data from minors. If you believe a child has provided personal data, contact us and we will delete it.

Changes to this policy

We update this page when our data practices change. Material changes will be announced on the homepage at least 14 days before they take effect.