Privacy Architecture
Deep Dive into our Zero-Knowledge Framework
Version: 2.1.0 Effective Date: Dec 26, 2025
1. The Non-Existence of Data
At Crypto Sync, privacy isn't just a policy; it's a technical constraint. Our platform is architected as a static set of tools. We do not have a backend database for user content. When you type a secret message or generate an RSA key, that data remains strictly in your browser's local RAM.
Technically, the "plaintext" you enter never triggers an HTTP POST request to our domain. You can verify this by opening your browser's Developer Tools (Network tab) while using any of our tools.
2. Local Computation Standards
We adhere to the "Client-Side Only" execution model. This means:
- Encryption/Decryption is handled by the browser's JavaScript engine.
- Random seeds for password generation are pulled from
crypto.getRandomValues(). - Hashing is performed via local bitwise operations.
- Private keys are never synchronized or transmitted to any third-party API.
3. Third-Party Isolation
Most modern websites are bloated with trackers from Google, Meta, and advertising networks. Crypto Sync is different. We have intentionally excluded:
- Google Analytics and Tag Manager.
- Facebook Pixel or any social sharing trackers.
- External fonts that could be used for fingerprinting.
- Third-party CDNs for core logic (except for standard, public library mirrors).
4. Information Security Measures
While we don't store your data, we protect the delivery of our tools using:
- HSTS: Enforcing secure HTTPS connections for all site visits.
- CSP (Content Security Policy): Preventing Cross-Site Scripting (XSS) by restricting where scripts can be loaded from.
- Subresource Integrity (SRI): Ensuring the libraries we load haven't been tampered with.
5. No Log Retention
Our web server logs are configured to be "anonymized." We record high-level traffic (e.g., "how many people visited index.html"), but we do not record IP addresses or user agent strings in a way that can be linked back to an individual.
6. Communication Privacy
Should you choose to contact us via our official email maynardmini13@gmail.com, your email address and the content of your message will be used solely for the purpose of responding to your inquiry. We do not sell or share contact lists with marketing firms.
Auditor Note
This privacy policy is designed to be technically verifiable. We encourage users with technical expertise to audit our source code and network traffic to confirm that our "Client-Side Only" promise is upheld at all times.