Privacy Policy
The short version: beemuu is open-source software that runs locally on your machine. The beemuu.com website itself collects very little data — and only what is necessary to operate the service, prevent abuse, and respond to messages you choose to send us. We do not sell data, and we do not run third-party advertising or tracking scripts.
1. Information we collect
1.1 Contact-form submissions
If you use the contact form on beemuu.com, we receive the name, email address, subject, and message you provide, plus the IP address you submitted from and the timestamp. This is stored in a SQLite database on the server.
Why: to read and respond to you. Retention: indefinitely, unless you ask us to delete it. Removal: email hello@beemuu.com quoting the email address used in the form.
1.2 Admin panel usage
If you sign in to the admin panel as a maintainer, we record:
- your username (you choose it; we store its scrypt hash and per-user salt),
- a random bearer token issued at sign-in (held only in the server's session table),
- your IP address and user-agent string from the sign-in request,
- the time of each sign-in.
Why: to operate the panel and to give maintainers an audit trail. Retention: the bearer token expires 8 hours after issue; username, hash, IP, and timestamps are retained as long as the admin account exists.
1.3 Server access logs
Our reverse proxy records standard request metadata: your IP, the URL you requested, the response status, and the response size. This is the same log any web server produces. It is used for debugging and abuse investigation. Retention: rolled daily for at least 30 days.
2. Information we do not collect
- No third-party analytics (no Google Analytics, no Plausible, no Fathom, no Meta Pixel).
- No third-party advertising scripts.
- No telemetry from the beemuu desktop application back to beemuu.com. The application runs offline; it does not phone home.
3. Where your data lives
beemuu.com is hosted on a single VPS. Data submitted to the contact form or created by an admin sign-in is stored on that VPS in a SQLite database. Daily snapshots are written to a backups directory on the same host. We do not transfer personal data to third-party processors.
4. Your rights
You may at any time:
- request a copy of the personal data we hold about you,
- request correction of any inaccurate data,
- request deletion of your data.
Send any of those requests to hello@beemuu.com. We will respond within 30 days.
5. Children
beemuu.com is not directed at children under 13, and we do not knowingly collect information from them. If you believe we have, contact us and we will delete it.
6. Changes to this policy
Material changes will be reflected in the "Effective" date above and in the page's git history on GitHub.