Lorapok Atlas API Directory
Privacy Policy
Lorapok Atlas is a free, open-source tool. We collect minimal data, never sell your information, and you can delete your account data at any time.
1. Who We Are
Lorapok Atlas API Directory ("we", "us", "our") is an open-source web application built and maintained by Mohammad Maizied Hasan Majumder. The app is hosted on GitHub Pages at maijied.github.io/Lorapok-API_Atlas.
2. What Data We Collect
We collect only what is necessary to provide the service:
- Google Account info — when you sign in with Google OAuth, we receive your name, email address, and profile photo URL from Google. We store your Google UID to identify your account.
- API keys you save — keys you enter in the API Key Manager are stored in Firebase Firestore under your user ID. Only you can read or write your own keys.
- Usage data — we track which APIs you test (anonymously for trending), your request history (last 20 entries, stored per user), and aggregate visitor/member counts.
- Chat history — conversations with Vaultie AI are optionally saved to Firestore when you are signed in.
- Collections, snippets, environment variables — any data you create in the app is stored in Firestore under your user ID.
We do not collect passwords, payment information, or any sensitive personal data beyond what Google provides during sign-in.
3. How We Use Your Data
- To provide and sync your API keys, collections, and history across devices
- To power the Vaultie AI chat history feature
- To show aggregate site statistics (total visitors, registered users)
- To identify trending APIs based on anonymous test counts
We do not use your data for advertising, profiling, or sell it to any third party.
4. Third-Party Services
- Firebase (Google) — authentication and Firestore database. Subject to Firebase Privacy Policy.
- Groq API — powers Vaultie AI responses. Messages you send to Vaultie are processed by Groq. Subject to Groq Privacy Policy.
- GitHub Pages — hosts the static app. Subject to GitHub Privacy Statement.
- CORS Proxies — when an API is CORS-blocked, requests may be routed through corsproxy.io, allorigins.win, or thingproxy.freeboard.io. These proxies see the API URL and response but not your personal data.
5. Data Storage and Security
All user data is stored in Firebase Firestore with production security rules — only you can read or write your own data. API keys are stored as plain text in Firestore (not encrypted at rest beyond Firebase's own encryption). Do not store highly sensitive credentials in this app.
6. Data Retention and Deletion
Your data is retained as long as your account exists. To delete your data:
- Sign in and use the Dashboard to clear your history and collections
- Email mdshuvo40@gmail.com to request full account deletion from Firestore
7. Cookies and Local Storage
We use browser localStorage and sessionStorage for:
- Theme preference (dark/light)
- Welcome modal shown state
- Visitor deduplication (session-based)
- Member counter deduplication (account-based)
We do not use advertising cookies or third-party tracking cookies.
8. Children's Privacy
Lorapok Atlas is intended for developers and is not directed at children under 13. We do not knowingly collect data from children under 13.
9. Changes to This Policy
We may update this policy as the app evolves. The "Last updated" date at the top will reflect any changes. Continued use of the app after changes constitutes acceptance.
10. Contact
Questions about this privacy policy? Contact us at mdshuvo40@gmail.com or open an issue on GitHub.