← Back to tools

Privacy Policy

Last updated: May 2026

The short version

ToolNinja runs entirely in your browser. We collect zero personal data, zero usage data, and make zero server calls when you use any tool. There is nothing to sell and nothing to leak.

1. What we collect

Nothing. Every tool on ToolNinja executes its logic locally in your browser using JavaScript. Your code, text, keys, tokens, passwords, or any other input you paste into a tool never leave your device. No data is transmitted to any server.

2. Cookies and local storage

Some tools store preferences (selected options, tab state) in your browser's local storage for convenience. This data stays on your device and is never transmitted anywhere.

We also store your cookie consent choice (toolninja_cookie_consent) in local storage so the banner only appears once. You can reset this at any time using the "Cookies" link in the sidebar.

3. Analytics & cookies

If you accept analytics, we use Google Analytics to understand which tools developers use most. This helps us decide which tools to improve and which new ones to build. Google Analytics is only loaded after you explicitly accept — it never fires on decline.

Google Analytics sets the following cookies:

  • _ga — distinguishes users (expires 2 years)
  • _gid — distinguishes users (expires 24 hours)
  • _ga_* — session state (expires 2 years)

We use anonymize_ip: true to mask the last octet of your IP address before it reaches Google.

Important: your tool inputs (JSON, code, passwords, JWT tokens, etc.) are never tracked or sent to Google or any other third party. Analytics only tracks page views and navigation — never what you paste into our tools. You can opt out at any time using the "Cookies" link in the sidebar, or by installing the Google Analytics Opt-out Browser Add-on.

4. Third-party services

ToolNinja is hosted on infrastructure that may collect standard web server logs (IP address, user agent, timestamp, URL). This data is handled according to the hosting provider's own privacy policy and is not combined with any user-level data by us. We do not integrate any advertising networks, social tracking pixels, or user profiling services.

5. Security tools

Tools such as AES encryption, RSA key generation, and JWT signing use your browser's built-in Web Crypto API. Keys and plaintext are never sent to any server. You should still take care not to paste production secrets into any browser-based tool, including this one, if your threat model requires it.

6. Children's privacy

ToolNinja does not knowingly collect any information from children under 13. Because we collect no personal information at all, there is nothing to address specifically for minors.

7. Changes to this policy

If this policy changes materially, we will update the "Last updated" date at the top of this page. Continued use of ToolNinja after a policy update constitutes acceptance of the revised terms.

8. Contact

Questions about this policy? Open an issue on our public repository or reach out via the contact details listed there.

🥷 ToolNinja