Privacy Policy

Last updated: March 2026

This Privacy Policy describes how tunr.sh (built by ahmet vural and theUglyCode) collects, uses, and handles your information when you use our CLI proxy tool and hosted services.

1. Information We Collect

Account Information: If you create an account, we collect your email address via our authentication provider (Supabase) to manage your tunnels and domains.

Tunnel Metadata: When an active tunnel routes traffic through our Relay Network, we temporarily process standard HTTP metadata (IP addresses, user agents, request sizes, routing paths) to facilitate the connection and enforce rate limits.

2. Data We Do Not Collect

• No Body Inspection: We do not inspect, log, or store the contents (HTTP bodies, headers, database payloads) of the traffic flowing through your tunnels.
• No Local Telemetry: The open source `tunr` CLI binary does not include silent analytics, crash reporting, or phone-home telemetry.
• Local Features: Logs generated by the "HTTP Inspector" (`tunr open`) or features like the "Freeze Cache" reside entirely in your local machine's memory and are never transmitted to our servers.

3. Third-Party Integrations

If you use the Feedback Injection (`--inject-widget`) feature, aggregated visual feedback and JavaScript errors are transmitted to our Dashboard API solely to present them to you upon login. This data is associated with your account and can be deleted via the dashboard.

4. Data Retention and Security

Diagnostic connection logs on the Relay Network are automatically purged within 7 days. We use industry-standard encryption (TLS 1.3) for all transit between the CLI and the Edge servers.

5. Contact

For privacy-related inquiries or to request data deletion, please contact us or open a privacy report via our GitHub repository.