Privacy Policy

HomeNode is a self-hosted personal infrastructure dashboard. It runs on hardware owned and operated by its creator, not on third-party cloud services. This policy explains what little data exists and how it is handled.

What is collected

HomeNode collects only the minimum data required to function:

• Account credentials — username, email (optional), and a bcrypt-hashed password. Passwords are never stored in plain text.
• Session tokens — short-lived JWT tokens used to authenticate API requests. These expire automatically.
• Usage data — basic analytics such as page views and feature usage, stored locally for the dashboard owner's reference only.
• Files and media — any files uploaded or managed through HomeNode are stored on the local server and never transmitted to external services.

What is NOT collected

• No third-party analytics (Google Analytics, Mixpanel, etc.)
• No advertising trackers or cookies
• No fingerprinting or device profiling
• No data sold to or shared with third parties
• No data transmitted to cloud services

Server logs

Standard web server access logs are kept for operational and security purposes. These logs may contain IP addresses, user-agent strings, and request paths. Logs are stored locally and rotated automatically. They are not shared with any external party.

Data storage

All data is stored on physically owned hardware located in the creator's home. Data does not leave this hardware except when the creator explicitly configures it to do so (e.g., for remote access through a VPN or tunnel).

Your data

Registered users can request deletion of their account and all associated data by contacting the system administrator. Deleted accounts and their data cannot be recovered.

Changes

This policy may be updated as the platform evolves. The last-updated date at the top reflects the most recent revision.

Contact

Questions about this policy can be directed to the system administrator through the Contact section on the HomeNode dashboard.