Privacy Policy

What Qwayk collects to run memberships and the site, what we don’t collect (no API keys), and your choices.

Qwayk

Related: Terms of Service · Disclaimer

Summary (plain English)

Qwayk is designed to be local-first:

  • You run the tools on your own machine/server.
  • Your API keys stay with you.

This website may still collect basic analytics and membership information so it can function.

This policy explains what we collect, why, and the choices you have.

1) Who we are

“Qwayk” refers to Qwayk LLC (“we”, “us”, “our”).

2) Information we collect

We collect only what we need to run the site and memberships.

Depending on how the site is configured and what you use, we may collect:

  • Account/membership info you submit (example: email address; optional name)
  • Basic site analytics (example: page views, referrers) if we enable analytics
  • IP address and basic server logs (for security and reliability)
  • Support communications you send us (example: your email + message content)

Examples of data categories (depending on configuration):

  • Membership/account: email address, optional name, member status (for example: free/paid), and basic metadata needed to operate the account
  • Support: emails you send us and our replies
  • Security/operations: server logs (may include IP address, timestamps, requested URL, and user-agent strings)
  • Analytics: page URL/path, referrer, device type, browser/OS, and aggregated traffic statistics

A) GitHub username (Applies only if we offer GitHub delivery)

If we provide GitHub repo access as part of membership delivery, we may collect the GitHub username you submit for invites/access.

B) Paid memberships and payments (Applies only if we offer paid memberships)

Payments are processed by our payment provider (for Ghost(Pro), this is typically Stripe). We do not store full payment card numbers on our servers. We may receive billing status information needed to provide access and support (for example: whether you have an active subscription).

C) Acceptance logging (Applies only if we implement acceptance logging)

If we implement acceptance logging, we may store records of your acceptance of our Terms/Privacy (for example: a version date and a timestamp).

3) What we do not collect

We do not want your API keys or secrets. We do not ask you to paste tokens into forms.

Please do not email us secrets. If you accidentally send secrets to us, contact privacy@qwayk.com and we will do our best to help you rotate or remove them.

4) How we use information

We use information to:

  • operate the website
  • provide membership access (if members are enabled)
  • provide support (email-only)
  • measure basic traffic and improve the docs and onboarding

5) Why we process information (plain English)

Depending on where you live, privacy laws describe different “legal bases” for processing. In plain English, we process information because:

  • it’s necessary to provide the site and memberships you request (for example: magic-link sign-in)
  • it helps keep the site secure and prevent abuse
  • it helps us understand overall site performance (analytics), without trying to identify individual visitors

A) Marketing (Applies only if we run a newsletter program)

If we run a newsletter/marketing program, we only send marketing emails if you opt in, and you can unsubscribe at any time.

6) Sharing and service providers

We do not sell personal information. We share limited information with service providers needed to run the site (hosting/memberships, payments, analytics, email delivery, DNS/proxy).

Examples of service providers (depending on configuration):

  • Ghost(Pro) (website hosting and memberships)
  • Stripe (payments, via Ghost)
  • Plausible (analytics)
  • Cloudflare (DNS, proxy/CDN, and email forwarding)
  • GitHub (invites/access to private repos for members)

Service providers may change over time. We will update this policy if our core providers change.

7) International transfers

Qwayk LLC is based in the United States, and our service providers may process data in other countries.

8) Cookies (including necessary cookies)

Some cookies (or similar technologies) are necessary for the site to work.

A) Necessary cookies

Ghost uses necessary cookies for member login sessions. In many cases, necessary cookies are permitted without opt-in consent, but requirements vary by jurisdiction.

B) Analytics and measurement (configuration-dependent)

We use Plausible Analytics for privacy-friendly measurement. Plausible can be used without cookies and without tracking you across sites.

C) Payments (Applies only if we offer paid memberships)

Payment providers may use cookies or similar technologies (for example: for fraud detection and security) during checkout and account management.

D) Non-essential cookies and marketing pixels (Applies only if we add them)

If we use cookies that are not strictly necessary (for example: marketing pixels or certain third-party analytics), we will provide appropriate notice and a way to consent where required by law.

We defer a standalone Cookie Policy page unless we add non-essential cookies/marketing pixels.

We do not use advertising pixels or behavioral tracking at launch, and we avoid third-party embeds and reCAPTCHA initially.

If we later add any non-essential tracking (for example: marketing pixels, retargeting, or third-party widgets that set non-essential cookies), we will add an appropriate consent mechanism.

9) Email communications

We may send operational emails related to your account (for example: sign-in links, membership notifications).

A) Newsletter and marketing emails (Applies only if we run a newsletter program)

If you opt in to marketing emails, you can unsubscribe using the link in the email (or by contacting us).

10) Data retention

We keep data only as long as needed for:

  • operating the site and memberships
  • security and abuse prevention
  • compliance (for example: accounting records if paid memberships are enabled)

You can request deletion where applicable (see “Your rights” below).

Retention guidelines (plain English):

  • Support emails: kept as long as needed to resolve the issue and maintain a reasonable record of support history.
  • Security/operational logs: kept for a limited period for troubleshooting and abuse prevention.
  • Membership records: kept while your account is active, and longer if needed for compliance (for example: accounting records if paid memberships are enabled).

11) Your rights

Depending on where you live, you may have rights such as:

  • requesting access to your personal information
  • requesting correction or deletion
  • objecting to certain processing, or withdrawing consent where applicable
  • making a complaint to your local data protection authority

We handle requests via email: privacy@qwayk.com

To help us process your request, include:

  • the email address associated with your account (if any)
  • what you want us to do (access/correction/deletion/objection)
  • any relevant context (for example: you changed emails)

To protect you from account takeover, we may need to verify you control the relevant email address before completing certain requests.

12) Security

We use reputable service providers and take reasonable measures to protect the site. However, no method of transmission or storage is 100% secure.

13) Children’s privacy

This site is not directed to children under 13, and we do not knowingly collect personal information from children under 13.

14) Changes to this policy

We may update this policy and will post the updated version on the site with an updated date.

15) Contact

For privacy questions and deletion requests, contact: privacy@qwayk.com