Privacy Policy

Last updated: 2026-06-12 — the short version: we keep almost nothing.

• Accounts are optional. You can use tosho.my fully anonymously. If you choose to sign in with Google, we store only your Google account identifier, e-mail address, display name and avatar URL — solely to show you your own dashboard. We never store passwords (sign-in is handled entirely by Google) and we never sell or share this data. Sign-in uses one strictly necessary session cookie (sess), which is deleted when you sign out.
• No IP addresses stored. When a short link is clicked we store only: a timestamp, the country (derived at the edge), the referrer hostname, and a coarse device class (desktop / mobile / bot). We never store IP addresses, user-agent strings, or any other personal data in our click logs.
• Rate limiting. To prevent abuse, a temporary counter keyed by IP address exists for at most 60 seconds during link creation, then expires automatically. It is never written to permanent storage.
• Cookies. We run no third-party trackers, analytics scripts or ads. The only cookie we ever set is the strictly necessary session cookie if you sign in; anonymous visitors get no cookies at all. A theme preference (light/dark) is stored locally in your browser and never sent to us.
• Link data. For each short link we store the destination URL, creation time, safety status and aggregate click counts. The creator receives a secret stats URL; anyone holding that URL can view the link's aggregate statistics.
• Retention. Short links and their aggregate click statistics are kept indefinitely (links never expire — see our Terms). Abuse reports are kept as long as relevant for safety and legal purposes. Account data is kept until you request deletion.
• Third parties. Destination URLs are checked against the Google Safe Browsing API for your safety. Optional sign-in is processed by Google (OAuth) — Google's own privacy policy applies to the sign-in step itself. The service is hosted on Cloudflare's network, which processes requests as a technical intermediary.
• Abuse reports store only the reported slug, the reason text you write, and a timestamp.
• Email you give us is not stored. If you optionally enter an email address when creating a link (to receive your secret key) it is used for that one message and immediately discarded — it is never written to our database. Messages sent through the contact form are delivered to our inbox so we can reply, and are otherwise not stored on our systems.
• Your rights. For anonymous visitors we hold no personal data, so there is usually nothing to access or delete. Signed-in users can request deletion of their account data (and the links attached to it) by emailing privacy@tosho.my; we comply with applicable data-protection law (including GDPR). To remove a short link you created, use the support page (instant, self-service).