Data collected

- When you visit our site, our servers may automatically record certain information that your web browser sends such as your web request, browser type, referring URL, platform type and the date and time of your request. All other informations are discarded right away.
- We use cookies to store your affiliate/subscription/ownership id and also your consent to the content warning. These cookies are either set by your browser via JavaScript or sent from our servers.
- When using a affiliate/subscription/ownership we collect informations about what pages you visited in respect to the account only.
- When using a subscription/ownership, we only collect informations about who downloaded what video at what time, so it doesn't include any request information like ip or user agent.

Since we use Cloudflare you might also want to take a look at Cloudflare - Security Policy

Data protection

- Media files like thumbs, screencaps and downloads are only accessible via salted links that are regenerated after a short amount of time to prevent scraping and hotlinking.
- Every server uses a sharded full-partition raid encryption with its own passphrase, which means no data stored on it is physically accessible unless you know the specific passhrase and can reassemble the exact raid setup.
- Every server is on lockdown once started, which means that interacting with the server (like logging in, ...) physically is not possible.
- Every connection (internal and external) happens only over TLS and must supply a certificate to verify its identity, which means that eavesdropping is not possible.
- Every login on a server requires a key instead of a password.
- Our in-house build software has several abstraction and detection layers to protect the database against any kind of data breaches/leaks.
- We only deploy an in-house build stripped down operating system which is derived from Debian GNU/Linux to minimize the risk of exploits and to better fit our needs.

Collected user data is not disclosed to any third party.