Last updated 13 July 2026

Privacy & Cookies

appfwd is built to do one job — give your local server a public URL — with as little of your data as that takes. We don't run analytics, we don't use advertising or third-party tracking, and we don't sell or share your data. This page explains the little we do store and the single cookie we set.

Cookies

We set exactly one cookie: a login session cookie, created only after you sign in. It keeps you signed in as you move between pages. It is a first-party cookie, is marked SameSite=Lax, and expires after about seven days (or when you log out).

We set no analytics, advertising, or third-party tracking cookies. Because the login cookie is strictly necessary to provide a service you explicitly ask for — staying signed in — it is exempt from consent requirements under EU law, so appfwd shows no cookie-consent banner. If we ever add non-essential cookies, we'll ask for your consent first.

What we store

  • Your account. The username and email address you register with, and a securely hashed password. Your email is used to sign you in, verify your address, and send essential account messages — not marketing.
  • Traffic you choose to capture. Requests and responses through your tunnels are recorded only when you turn capture on. They're stored so you can inspect and replay them, and are removed automatically after a retention period.

Your data & contact

You can request access to, or deletion of, your account and its data at any time. For any privacy question or request, email karou [at] baud9600 [dot] dev.