-
Notifications
You must be signed in to change notification settings - Fork 0
Privacy Policy
Nick edited this page Nov 27, 2025
·
1 revision
Last Updated: 2025-11-27
Masker API is designed with privacy as a core principle. We believe your data should never be stored, logged, or retained.
- Text strings and JSON payloads sent via HTTP POST requests
- Only string values in JSON are scanned for PII
- Processing happens in-memory only
- β No database - All processing is in-memory, stateless
- β No file storage - Nothing is written to disk
- β No content logging - Request/response bodies are never logged
- β No data retention - Your data is processed and immediately discarded
We log only service metadata for operational purposes:
2025-11-27 10:30:45 - masker - INFO - request: method=POST path=/v1/redact status=200 content_length=128 duration_ms=45.20 request_id=abc123
Logged:
- HTTP method (GET, POST, etc.)
- Request path
- HTTP status code
- Payload size (bytes)
- Processing time (milliseconds)
- Request ID (for tracking)
Never Logged:
- Request body content
- Response body content
- PII content
- User data
- Email addresses
- Phone numbers
- Names
- Any personal information
- Request received - Data is read into memory
- PII detection - Text/JSON is scanned for PII
- Redaction applied - PII is replaced with masks/placeholders
- Response sent - Redacted data is returned
- Memory cleared - All data is immediately discarded
No data persists after the request is complete.
- β HTTPS only - All communication is encrypted
- β Stateless architecture - No session data stored
- β Non-root execution - Docker container runs as non-root user
- β No external storage - No database or file system access
- β Request ID tracking - For debugging without exposing content
Masker API is GDPR compliant because:
- No personal data is stored
- No personal data is logged
- No data retention
- No third-party data sharing
- Complete data deletion after processing
Since we don't store any data, there's nothing to request, delete, or export. Your data is processed and immediately discarded.
We may update this privacy policy from time to time. Changes will be posted on this page.
For privacy-related questions, please contact us through GitHub Issues.
Privacy First. No Data Storage. No Logging. Ever.