1. Who we are

This site is operated by Yuval Cohen (Mini UV), based in Israel. For privacy questions or data-subject requests, contact support@popx.tools.

2. What we collect

popx.tools is a documentation site. There are no visitor accounts, no sign-in, and no payment flow on this site. POPX itself is sold and delivered exclusively on Patreon at patreon.com/c/_mini_uv.

Server logs

  • Standard request logs (IP address, user-agent, timestamp, requested path) are processed by our hosting provider for security, abuse prevention, and basic analytics. These logs are short-lived.

Admin sign-in

  • The site operator (Yuval) signs in at /admin to preview drafts. That session uses a signed cookie (JWT) containing the operator's user ID. No other user has an account on this site.

What we don’t collect

  • We don’t collect names, emails, or any account data from visitors. There is no signup form on the site.
  • We don’t handle payments, card details, or billing information. All commerce happens on Patreon.
  • We don’t run third-party advertising trackers or build behavioral profiles.
  • We don’t sell your data.

3. How we use it

  • To serve documentation, learn guides, and the changelog.
  • To detect and prevent abuse of the site.
  • To comply with legal obligations.

4. Service providers (sub-processors)

We use the following third parties to operate the site:

  • Cloudflare - hosting, edge compute, database (D1), file storage (R2), and CDN.
  • Notion - internal content management for docs and changelog (visitor data does not flow to Notion).
  • Google Fonts - typography (font requests reach Google).
  • Discord - community chat (optional; only applies if you join the server).
  • Patreon - separate platform where POPX is sold. If you become a member, your relationship with Patreon is governed by Patreon’s privacy policy, not this one.

Each of these providers operates under its own privacy policy.

5. Cookies

We use a small number of essential cookies. The only cookie set during normal visitor browsing is a theme preference stored in localStorage (light/dark). A signed session cookie is set only when the site operator signs in at /admin. We don’t use advertising cookies or cross-site tracking.

6. Legal basis (GDPR / UK GDPR)

  • Legitimate interests - security, fraud prevention, and basic analytics from server logs.
  • Legal obligation - responding to lawful requests.

7. Data retention

  • Server logs: short-lived, typically rotated within 30 days.
  • Admin session cookie: expires within 24 hours of sign-in.

8. Your rights

Depending on where you live, you may have the right to access, correct, export, or delete personal data we hold about you, to object to or restrict certain processing, and to lodge a complaint with your local data-protection authority. Because we don’t collect visitor account data, in practice this typically applies only to short-lived server logs. To exercise any of these rights, email support@popx.tools.

For membership and payment data held by Patreon, contact Patreon directly.

9. International transfers

Our infrastructure runs on global edge networks, so your data may be processed in countries other than your own (including the United States and the European Union). Where required, our service providers rely on Standard Contractual Clauses or equivalent safeguards.

10. Security

We take reasonable technical and organizational measures to protect data, including TLS in transit, encrypted storage, and least-privilege access. No system is 100% secure; if we ever suffer a breach affecting personal data, we will notify affected parties as required by law.

11. Children

POPX is not directed to children under 16 and we don’t knowingly collect personal information from them. If you believe a child has provided personal data, contact support@popx.tools and we will delete it.

12. Changes

We may update this policy. Material changes will be announced on the Site. The “Last updated” date at the top reflects the current version.