Skip to content
Download for

Legal

Privacy Policy

Privacy Policy for JPRQ, covering account data, tunnel metadata, request inspection data, subscriptions, support, cookies, and user choices.

1. Overview

This Privacy Policy explains how JPRQ collects, uses, stores, shares, and protects personal data when you use the JPRQ website, dashboard, desktop app, CLI, public tunneling service, request debugger, support channels, and paid subscriptions.

If you do not want JPRQ to process data as described here, do not use the service.

2. Data We Collect

Account and identity data

We may collect your name, email address, GitHub account details, authentication identifiers, profile image, organization information, and account settings.

Product usage and tunnel data

We may collect tunnel identifiers, tunnel domains, custom subdomains, custom domains, local target metadata, timestamps, IP addresses, user agent strings, device identifiers, CLI or app version, operating system, bandwidth usage, connection counts, request counts, error logs, and security events.

Request inspection data

If you use request debugging or request history features, JPRQ may process request and response metadata, headers, bodies, payloads, paths, methods, status codes, timing data, and replay data. The exact data depends on what your local services receive and what features you enable.

Billing and subscription data

Paid orders are processed by Paddle.com as Merchant of Record. We may receive subscription status, plan, renewal, cancellation, refund, license, customer, and transaction metadata from Paddle. We do not receive or store full card numbers.

Support and communications

If you contact us, we collect the information you provide, including your email address, message content, attachments, logs, and troubleshooting details.

3. How We Use Data

We use data to:

  • Provide, maintain, secure, and debug JPRQ.
  • Create tunnels, route traffic, authenticate users, and enforce plan limits.
  • Operate request inspection, replay, history, and desktop or CLI workflows.
  • Process subscriptions, licenses, renewals, cancellations, refunds, invoices, and taxes through Paddle.
  • Detect abuse, fraud, security incidents, illegal activity, and service misuse.
  • Respond to support requests and communicate about account, billing, security, and product updates.
  • Analyze aggregate service performance and improve JPRQ.

4. Legal Bases

Where required by law, we process personal data based on contract necessity, legitimate interests, consent, legal obligations, or protection of rights and safety. Examples include providing the service you request, securing shared infrastructure, complying with tax and payment obligations, and responding to support requests.

5. Sharing and Processors

We do not sell personal data. We may share data with service providers and processors that help us operate JPRQ, including hosting, database, authentication, analytics, logging, email, support, security, and payment services.

Paddle.com acts as Merchant of Record for paid orders and processes buyer payment, tax, invoice, order support, cancellation, and refund data under Paddle's own buyer terms and privacy notice. You can review Paddle's buyer information at paddle.net and Paddle's privacy notice at paddle.com/legal/privacy.

We may also disclose data if required by law, legal process, security investigation, fraud prevention, enforcement of these policies, or protection of JPRQ, users, Paddle, infrastructure providers, or third parties.

6. Cookies and Local Storage

JPRQ may use cookies, local storage, and similar technologies for authentication, session management, preferences, security, product analytics, and checkout flows. Your browser or device settings may let you limit cookies, but some features may stop working.

7. Retention

We keep personal data only as long as needed for the purposes described in this policy, including providing JPRQ, complying with legal obligations, resolving disputes, enforcing agreements, preventing abuse, and maintaining security.

Request history and tunnel logs may be retained for different periods depending on your plan, feature configuration, security needs, or legal requirements. We may retain aggregated or de-identified data after personal data is deleted.

8. Security

We use reasonable technical and organizational safeguards to protect data. No internet service can guarantee perfect security. You are responsible for securing your account, local services, secrets, exposed applications, and systems connected through JPRQ.

9. International Transfers

JPRQ and its service providers may process data in countries other than your own. Where required, we use appropriate safeguards for international transfers.

10. Your Choices and Rights

Depending on where you live, you may have rights to access, correct, delete, export, restrict, or object to processing of your personal data. You may also have the right to withdraw consent where processing is based on consent.

To make a privacy request, contact [email protected]. We may need to verify your identity before responding.

11. Children

JPRQ is not directed to children under 16, and we do not knowingly collect personal data from children under 16. If you believe a child provided personal data to JPRQ, contact us so we can take appropriate action.

12. Changes

We may update this Privacy Policy from time to time. If changes are material, we will take reasonable steps to notify affected users.

13. Contact

For privacy questions or requests, contact JPRQ at [email protected].