tftsr@homelab:~/privacy$ cat policy.md
← tftsr.com 
 ██████╗ ██████╗ ██╗██╗   ██╗ █████╗  ██████╗██╗   ██╗    ██████╗  ██████╗ ██╗     ██╗ ██████╗██╗   ██╗
 ██╔══██╗██╔══██╗██║██║   ██║██╔══██╗██╔════╝╚██╗ ██╔╝    ██╔══██╗██╔═══██╗██║     ██║██╔════╝╚██╗ ██╔╝
 ██████╔╝██████╔╝██║██║   ██║███████║██║      ╚████╔╝     ██████╔╝██║   ██║██║     ██║██║      ╚████╔╝
 ██╔═══╝ ██╔══██╗██║╚██╗ ██╔╝██╔══██║██║       ╚██╔╝      ██╔═══╝ ██║   ██║██║     ██║██║       ╚██╔╝
 ██║     ██║  ██║██║ ╚████╔╝ ██║  ██║╚██████╗   ██║       ██║     ╚██████╔╝███████╗██║╚██████╗   ██║
 ╚═╝     ╚═╝  ╚═╝╚═╝  ╚═══╝  ╚═╝  ╚═╝ ╚═════╝   ╚═╝       ╚═╝      ╚═════╝ ╚══════╝╚═╝ ╚═════╝   ╚═╝
Privacy Policy

OPERATOR TFTSR  ·  United States

SCOPE *.tftsr.com — all hosted services

EFFECTIVE 2026-05-22

TYPE Private homelab — authorized users only

grep -n "" policy.md
01 Introduction

This policy describes how TFTSR handles data across services operated at *.tftsr.com. These are private homelab services — not open to the public, not commercial products.

By using any service under this domain, you acknowledge that you are an individually authorized user and agree that your activity may be logged as described below.

02 Who Has Access

Access to TFTSR services is granted exclusively by the operator. There is no public registration, no self-service sign-up, and no open enrollment. All users are individually authorized.

03 What We Collect

The following data is collected automatically as a byproduct of normal service operation:

  • nginx access logs — IP address, user-agent, timestamp, HTTP method, and request path per request.
  • Keycloak auth events — login timestamp, session ID, username, and auth outcome for SSO-protected services.
  • Application logs — operational log output from n8n, Vault, and other hosted services.

No analytics platform, telemetry collector, or third-party tracking script is in use.

04 How Data Is Used

All collected data is used solely for operational purposes: troubleshooting, security monitoring, and service maintenance. Data is never used for advertising, profiling, or shared with third parties.

05 Data Retention
  • nginx access logs — ~30 days under default log rotation.
  • Application logs (Vault, n8n, Keycloak) — per each service's default settings.

No long-term archival is performed.

06 Third-Party Services

All services are self-hosted. No user data is transmitted to external third-party services, cloud analytics, or external APIs as part of normal operation.

07 Cookies & Sessions

Session cookies are set by Keycloak and individual applications solely for authentication. No tracking cookies, advertising cookies, or persistent identifiers are used on any service under this domain.

08 Your Rights
  • Removal of your user account from TFTSR services.
  • Deletion of associated records where technically feasible.

Contact the operator at the address below to make a request.

09 Contact

For privacy questions, data requests, or account removal:

priv+shaunarman@gmail.com

10 Changes to This Policy

This policy may be updated at any time. The current version is always available at tftsr.com/privacy. No notification is sent — private homelab, no notification mechanism.

The effective date above reflects the date of the last revision.