Privacy Policy
Last Updated: July 10, 2026
1. Overview
This Privacy Policy explains how the Arkyn documentation website (currently hosted at docs.arkyn.dev), its official contact channels, and — where explicitly configured by developers — certain optional services associated with Arkyn's npm packages, collect, use, share, and protect personal data.
Arkyn's Maintainer is based in Brazil, so this Policy is written primarily with the Lei Geral de Proteção de Dados (LGPD) in mind, while also addressing the General Data Protection Regulation (GDPR) for visitors from the European Economic Area, since the Site and Documentation are publicly accessible worldwide.
2. Definitions
See
Arkyn Legal Documentation for the shared glossary. In this Policy, "
personal data" has the broad meaning given to it under LGPD Article 5(I) and GDPR Article 4(1): any information relating to an identified or identifiable natural person.
3. Scope
This Policy applies to:
- The Arkyn website and Documentation.
- Official forms and contact channels (for example, the newsletter signup and email contact).
- Online resources associated with the project, such as analytics and monitoring on official infrastructure.
This Policy does not apply, unless explicitly stated otherwise, to:
- Data processed locally by your own application when you use Arkyn's npm packages (you are the controller of that data — see Section 9).
- Third-party websites accessed through links from the Site (see Section 17).
- Internal communications between maintainers or contributors outside official published infrastructure.
The Apache License described in
License governs software use, copying, modification, and distribution; it does not replace this Policy and does not, by itself, define how personal data is handled in Arkyn's online services. In short: the License governs software rights, and this Policy governs personal data.
4. Data Controller
For the processing described in this Policy, the data controller is Lucas Gonçalves, creator and maintainer of Arkyn, reachable through the official channel below.
Privacy contact: lucasgoncalves@arkyn.dev
5. Categories of Data Collected
Depending on how you interact with the Site, the following may be collected:
5.1 Data You Provide Directly
- Name, email address, and message content submitted through contact, support, or newsletter forms.
- Information you voluntarily include in GitHub issues, discussions, pull requests, or other public communications (see Section 16).
5.2 Technical and Browsing Data
- IP address, access date and time, pages visited, referring/traffic source, browser language, and browser settings.
- Device type, operating system, browser type, screen resolution, and basic usage/interaction events.
- Technical identifiers associated with cookies and similar technologies (see Section 6).
5.3 Security and Operations Data
- Technical logs used for diagnostics, abuse prevention, failure detection, and operational security of the Site.
6. Cookies and Similar Technologies
The Site may use cookies, local storage, and similar technologies for:
- Essential functionality — for example, remembering your light/dark theme preference.
- Audience and performance measurement — understanding aggregate traffic and usage patterns.
- Content and search improvement — for example, powering documentation search.
You can manage or disable cookies through your browser settings at any time. Disabling non-essential cookies will not prevent you from reading the Documentation; disabling essential cookies (such as theme storage) may cause minor functionality to reset between visits.
7. Purposes of Processing
Data described in Section 5 is processed to:
- Provide and maintain the Site and Documentation.
- Improve performance, usability, and overall user experience.
- Respond to contact, support, and technical inquiries.
- Send informational or institutional communications where you have opted in (for example, the newsletter).
- Detect and prevent fraud, abuse, and security incidents.
- Comply with applicable legal or regulatory obligations.
8. Legal Bases (LGPD/GDPR)
Where applicable, processing is based on one or more of the following legal grounds:
- Your consent (for example, subscribing to the newsletter).
- Legitimate interest in operating, securing, and improving the Site, balanced against your fundamental rights and freedoms.
- Compliance with a legal or regulatory obligation.
- The regular exercise of rights in administrative, arbitration, or judicial proceedings.
9. NPM Packages and Optional Logging Services
By default, Arkyn's npm packages installed in your own project do not automatically collect end-user personal data for transmission to Arkyn's infrastructure, absent explicit configuration by you.
- Your use of Arkyn's packages within your own application is your responsibility, and you act as controller (or processor, as applicable) for any personal data your application processes.
- If you integrate third-party tools (analytics, logging, monitoring, external APIs) alongside Arkyn's packages, those integrations are governed by their own respective policies, not this one.
9.1 Optional Logging and Monitoring Features
Certain Arkyn ecosystem components may offer optional logging, monitoring, or observability features (for example, through ApiService, DebugService, LogService, and related utilities documented under @arkyn/server). These features are disabled by default and only activate when a developer explicitly configures and enables them.
When enabled by a developer:
- Technical logs may be transmitted to Arkyn's infrastructure for diagnostics, observability, troubleshooting, and service improvement.
- The content of transmitted logs is determined entirely by that developer's own configuration choices.
- Arkyn does not automatically collect end-user personal data through these features without the developer's explicit configuration and activation.
- The developer is solely responsible for determining what information is logged and transmitted, and for ensuring their own compliance with applicable privacy and data-protection law, including obtaining any necessary consent or legal basis from their own end users.
We strongly recommend developers avoid transmitting sensitive, confidential, authentication, financial, or health-related data through these optional logging features. For data submitted this way, the developer generally acts as the data controller (or equivalent role under applicable law) for their own end users' data, while Arkyn acts as a processor or service provider strictly for storing, processing, and displaying the submitted logs on the developer's behalf.
10. Data Sharing
Data may be shared, when necessary, with:
- Infrastructure, hosting, analytics, email, and monitoring providers who process data on the Maintainer's behalf.
- Communication and support tools used to respond to inquiries.
- Public authorities, when legally required.
Only the minimum data necessary for each purpose is shared, with appropriate contractual and technical safeguards where a third-party processor is involved.
11. International Transfers
Some infrastructure or service providers may process data outside your country of residence. Where this occurs, appropriate safeguards are used, such as standard contractual clauses or equivalent mechanisms recognized under applicable law (including LGPD Chapter V and GDPR Chapter V, as relevant).
12. Retention and Deletion
Data is retained only for as long as necessary to fulfill the purposes described in this Policy, including any applicable legal, regulatory, audit, or security-related retention requirements. When retention is no longer necessary, data is deleted or anonymized, or retained in blocked form where required by law.
13. Information Security
Administrative, technical, and organizational measures are used to protect personal data against unauthorized access, misuse, alteration, disclosure, or accidental or unlawful destruction. No system is completely invulnerable; in the event of a security incident affecting personal data, the Maintainer will take appropriate response measures and, where legally required, notify affected individuals and competent authorities. See
Security Policy for how to report a suspected vulnerability.
14. Your Rights
Subject to applicable law (including LGPD Article 18 and GDPR Articles 15–22), you may request:
- Confirmation of whether your data is being processed.
- Access to your personal data.
- Correction of incomplete, inaccurate, or outdated data.
- Anonymization, blocking, or deletion of unnecessary or excessive data.
- Data portability, where applicable.
- Information about with whom your data has been shared.
- Withdrawal of consent, and objection to processing, in applicable cases.
- Review of decisions made solely through automated processing, where applicable.
To exercise any of these rights, contact lucasgoncalves@arkyn.dev. A request for proof of identity may be made to protect you and prevent fraudulent requests.
15. Children's Privacy
The Site is not intentionally directed at children without appropriate legal supervision, and personal data from children is not knowingly collected. If it comes to the Maintainer's attention that a child's data has been processed without an appropriate legal basis, that data will be deleted, subject to any conflicting legal retention requirement.
16. Public Repositories and Contributions
Interactions in Arkyn's public GitHub repositories — issues, discussions, pull requests, comments, and commit messages — are publicly visible by design and may be indexed by search engines. Please avoid including sensitive personal data in these public spaces. See
Contributor Terms for the terms that apply specifically to contributions.
17. Third-Party Links
The Documentation may link to third-party platforms (for example, npm, GitHub, Figma, or analytics providers). Each operates under its own privacy policy, independent of this one.
18. Changes to This Policy
This Policy may be updated periodically to reflect technical, legal, or operational changes. The current version is always the one published at this file's location, with the "Last Updated" date at the top. Material changes will be communicated through appropriate means where legally required or where they meaningfully affect your rights.
19. Contact
For questions, privacy requests, or to exercise your rights: lucasgoncalves@arkyn.dev.
20. Related Documents