// contents
1. Data Controller
RandomPasswordTool.com is operated by Kokal Operations Ltd, registered in England and Wales. Privacy enquiries: [email protected]
2. What We Collect
What we do NOT collect
- Generated passwords — all generation uses
crypto.getRandomValues()client-side. No password or API parameter is sent to any server. - Keystroke data, clipboard contents, or typed input of any kind.
Collected automatically
GitHub Pages (our hosting provider) logs standard HTTP access data: IP address, browser type, pages visited, timestamps. Not used to identify individuals. Retained 30 days.
Voluntarily provided
- Contact form submissions: name, email, message
- Cookie preference: stored as
rpt-ckin browser localStorage — never transmitted to any server
3. Lawful Basis (UK GDPR)
| Purpose | Data | Basis | Retention |
|---|---|---|---|
| Responding to enquiries | Name, email, message | Legitimate interests | 12 months |
| Site security | IP, server logs | Legitimate interests | 30 days |
| Analytics | Anonymised usage | Consent | 26 months |
4. Cookies
We use minimal cookies. Consent preference stored as rpt-ck in localStorage only — never transmitted. See Cookie Policy for full detail.
5. Third-Party Services
- Google Fonts — JetBrains Mono and Inter loaded from Google CDN. Google may log font requests per their privacy policy.
- GitHub Pages — Hosting provider. Processes connection metadata per GitHub's privacy policy.
- Affiliate partners — Clicking affiliate links may trigger partner tracking. See Affiliate Disclosure.
6. Retention
Contact data: 12 months. Server logs: 30 days (hosting provider). Cookie preference: until browser localStorage is cleared by the user.
7. Your Rights (UK GDPR)
You have the right to access, rectify, erase, restrict, object to, or port your personal data. Submit requests to [email protected]. We respond within 30 days.
8. Complaints
UK Information Commissioner's Office: ico.org.uk · 0303 123 1113