This article shows how you can expect your data to be processed at Fengzi Lab and projects at Fengzi Lab and our expectations of you as a user. This is NOT a privacy policy and thus serves no legal purpose. The completeness, total correctness, and time relevancy are NOT guaranteed. I may update this page without notice, but you’re always welcome to come and check this as a resource. Although Fengzi Lab consists only of a 1-person “team”, I will refer to it as “we” or “us” in the context of this article.
About Your Privacy
What data do we collect?
All data we collect about you are information that should be judge-able as “needed for the function”. For example, we may need to collect your IP address in some areas that need bot or spam prevention or use data you explicitly provided such as the files you upload using drop.place.
However, please note that there are third-party providers we use by which we can’t know or control how they collect or store information (mostly traffic data). Some providers include (but are not limited to): Akamai, Cloudflare, Oracle Cloud Infrastructure, Vercel, etc. All connections to Fengzi Lab are encrypted to ensure your data are secure in transit, and some sensitive information stays encrypted before and after transit. No one outside of Fengzi Lab has any access to your data within Fengzi Lab.
How do we store & use your data?
Currently and by default, we will not store any of your data that are not necessary for the functions. For example, we may store long-term data you explicitly provided to us such as account information, or temporary data that are only needed in a specific time frame, such as files you upload to drop.place and some metadata that come along with them, which are deleted after they’re no longer needed.
Private information will never be used outside of its intended use case. We put in best effort to anonymize all stored data as much as possible and ensure they’re not accessed by us or third parties unless the access is intended by the user. If there is a need to use data for applications such as analytics in the future, they will be kept to minimal abilities like tracking basic usage only, so that your information is not accessed unintendedly.
Do we sell your data?
No, selling data would go against a large point of starting this project. We don’t associate or trade information with any third party. It’s also more tempting to avoid such cringe behaviors on a personal project like this than to sell it for the miserably low return I may potentially get for such little amount of data.
How do we make money?
As a hobby project, there are simply no plans to profit. I designed my projects and their backends in a way that hopefully won’t cost a great amount of money to me so I can afford to keep doing so. There are also no current plans to run ads just because I like my sites pretty (although I’m not denying the possibility of any sponsorships in the future).
I trust donation models where people are willing to pay for good products they use and those who don’t want to or don’t have the ability to won’t be forced to do so. Again, I like doing this so I don’t expect to make a profit from here.
About Our Expectations
Fengzi Lab focuses on making the best stuff free for anyone to use and expects little in return. To respect you, we take your data privacy seriously and try to protect them wherever possible. Thus, we also ask you to respect our mission by… being nice!
Nothing on this site should be used for illegal purposes, nor should it do or promote harm. We only provide the tools we believe will benefit you, and what you do with them should be your responsibility. Since we used common sense to define how we protect your data, please use our products in ways that are, also by common sense, “nice”!
All projects on Fengzi Lab come with absolutely no warranty. However, you are welcome to make suggestions or ask questions by going here.
“Attacking” for the purpose of finding security flaws (or voluntary red-teaming) can be conducted on this site without permission as long as and only if you:
- don’t inject actual harmful code that may affect our users or servers,
- don’t corrupt or destroy any data in our databases,
- disclose the issues with us after finding them,
- immediately dispose of any user data if you get hold of them, and
- don’t significantly disrupt the operation of this site.
Any form of hacking for reasons or in ways other than this is disgusting, inhuman behavior that deserves to be condemned. It’s anything but impressive. For ethical hackers, please forgive me if I cannot afford to fund bounties for vulnerabilities found, but thank you in advance for contributing by reporting them.
Thanks!