Legal

Privacy Policy

Effective Date: May 18, 2026 Last Updated: May 18, 2026

1. Introduction

corsproxy.dev ("Service") is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

2. Data We Collect

2.1 Account Information

When you register for an account, we collect:

2.2 API Keys

2.3 Request Data

When you make requests through the Service, we log:

2.4 Usage Analytics

2.5 Technical Data

3. How We Use Your Data

3.1 Service Operation

3.2 Security and Compliance

3.3 Analytics and Improvement

3.4 Communication

4. Data Retention

4.1 Account Data

4.2 API Keys

4.3 Request Logs

4.4 Usage Analytics

5. Data Security

5.1 Encryption

5.2 Access Controls

5.3 Infrastructure Security

6. Third-Party Services

6.1 Cloudflare

6.2 Proxied Requests

6.3 Email Service (Future)

7. Your Rights

7.1 Access

7.2 Correction

7.3 Deletion

7.4 Portability

7.5 Opt-Out

8. Children's Privacy

The Service is not directed to children under 13. We do not knowingly collect information from children under 13. If we become aware that we have collected such information, we will delete it immediately.

9. International Data Transfers

The Service operates on Cloudflare's global edge network. Your data may be processed and replicated across Cloudflare's points of presence worldwide, including data centres inside and outside the European Economic Area, in order to deliver low-latency access from your location.

We do not maintain our own servers; all storage (Workers KV, Durable Objects) and compute (Cloudflare Workers) is operated by Cloudflare. Cloudflare provides EU Standard Contractual Clauses (SCCs) and a UK International Data Transfer Addendum as part of its Data Processing Addendum, which we have accepted. By using the Service, you consent to your data being transferred and processed on Cloudflare's infrastructure under those safeguards.

If you require a copy of the Cloudflare DPA or have specific data-residency requirements, contact us at contact@corsproxy.dev.

10. California Privacy Rights (CCPA)

California residents have the right to:

To exercise these rights, contact us at privacy@corsproxy.dev

11. European Privacy Rights (GDPR)

If you are in the European Union, you have the right to:

To exercise these rights, contact us at privacy@corsproxy.dev

12. Changes to Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or applicable laws. We will notify you of material changes by:

Continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.

13. Contact Us

For privacy-related questions or requests, contact us at:

14. Data Protection Officer

For GDPR-related inquiries, contact our Data Protection Officer at:

15. Compliance

This Privacy Policy complies with:

16. Additional Privacy Measures

16.1 Logging Best Practices

16.2 Retention Minimization

16.3 Audit Logging


Last Updated: May 18, 2026