Tools

Privacy Policy

Last updated: 2026-06-20

Short version: no analytics, no ads, no tracking. The tools run in your browser. A few features (weather, stocks, file sharing) use our server as a proxy — we describe exactly what data flows where below.

1. Who we are

This site (the “Service”) is a browser-based developer toolkit operated by SUB&SUB LLCthe site owner (“we”, “us”, “our”). For privacy questions you can reach us at [email protected][email protected].

2. Local-only processing

Most tools — Base64, TOTP, JWT, QR, hashing, hex, HTML entities, regex, diff, color, UUID, password, Unix timestamp, coin flip, timer, and melody — run entirely in your browser. The data you paste, type, or drop into these tools is never sent to our servers, never stored on disk by us, never shared with any third party, and is discarded when you close the tab.

3. What we do not do

We do not run analytics, advertising, fingerprinting, or behavioural tracking. Your browser loads no third-party scripts, fonts, or tracking pixels — all assets are self-hosted. We never sell, rent, or share your data with third parties for marketing purposes.

4. Local browser storage

The Service uses localStorage to remember your preferences and tool state on your device. This includes: theme settings (mode, palette, font, animation), active tab and tab ordering, clipboard history, file-share history, currency converter preferences, weather favorites, timer/alarm configuration, radio favorites, and melody notes. This data stays on your device, is readable only by this site, and you can clear it at any time from your browser settings.

The Service is also installable as a Progressive Web App. The service worker caches static page assets so the tools keep working offline. It does not cache or transmit any of your input.

5. Account & authentication

Signing in is entirely optional. You can use every tool without an account. If you choose to sign in, authentication is handled by the main site (subnsub.com), which sets an sid session cookie scoped to .subnsub.com. This cookie is HttpOnly (not readable by JavaScript), SameSite=Lax, and contains only a random session token — no personal data. The tool site reads this cookie solely to identify your session; it never sets cookies of its own.

6. Cloud sync

When signed in, you may opt to sync your settings across devices. This uploads a subset of your localStorage data (theme preferences, tab layout, clipboard history, file-share history, and weather favorites) to our server, stored in a per-user record. This data is visible only to you, is never shared with third parties, and can be deleted by signing out and clearing your account. No sync occurs unless you are signed in.

7. Temporary file sharing

The file-share tool lets you upload files for temporary sharing. Files are stored on our infrastructure and automatically expire (5 minutes to 5 hours depending on your tier). We do not inspect file contents. All files are served as opaque downloads. After expiry, files are deleted and cannot be recovered.

8. Server-proxied tools

A few tools fetch live data through our server, which acts as a proxy to public data sources. No user account or identity is forwarded to these sources.

Weather: the city name or coordinates you search are forwarded to a weather data provider to return forecasts.
Stocks: the ticker or company name you search is forwarded to a market-data provider.
Wallet / ENS: the wallet address or ENS name you enter is forwarded to a public Ethereum node. We do not log or store this query.
Currency: our server fetches a public exchange-rate table. The amounts you convert never leave your browser.
IP info: your own IP address and the geolocation metadata your hosting provider attaches to the request are shown back to you. We do not store this data.

9. IP address handling

For rate limiting and abuse prevention, our server hashes your IP address (SHA-256) and stores only the truncated hash. Your plaintext IP address is never written to any persistent storage. The IP info tool shows your IP back to you but does not store it.

10. Billing

The optional paid plan (Plus) is billed through Stripe via the main site (subnsub.com). Payment details (card number, billing address) are handled entirely by Stripe and never reach our servers. We store only your subscription status and expiry date.

11. Hosting & infrastructure

The Service is hosted on Cloudflare. Cloudflare may process request metadata (IP address, headers, timestamps) as part of delivering the site. Cloudflare’s own privacy policy applies to that processing. We do not use any Cloudflare analytics or tracking products.

12. Security

All connections use HTTPS. Sensitive operations (hashing, TOTP, JWT) happen entirely on your device. We recommend keeping your browser and OS up to date and avoiding the use of secrets (such as TOTP seeds or private keys) on shared or compromised machines.

13. Children’s privacy

The Service is a general-purpose developer tool and is not directed at children under 13. We do not knowingly collect personal information from children.

14. Changes to this policy

If we update this Privacy Policy, we will revise the “Last updated” date at the top of this page.

15. Contact

Questions, requests, or concerns about this policy can be sent to [email protected][email protected].