This Privacy Policy describes how Duo Dev Technologies ("we," "us," "our") collects, uses, stores, shares, and protects your personal information when you access or use ToolByte ("Service," "Website," "Platform"), available at https://toolbyte.duodev.in.
ToolByte is a free online platform providing a comprehensive suite of developer and SEO tools, including minifiers, formatters, generators, text processors, code editors, and security utilities.
By accessing or using ToolByte, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our data practices described herein, please discontinue use of the Service immediately.
This Privacy Policy applies to all users of ToolByte, including unregistered visitors, registered account holders, and any person who interacts with our Service in any capacity.
Product Policy
ToolByte
Product-Specific Policy
1.0
ToolByte Privacy Policy
Last Updated: February 28, 2026
Important Notice
This is a product-specific policy. In case of any conflict between this policy and our Common Policies, this product-specific policy shall prevail for the applicable product.
Found matches
No matches found for ""
Table of Contents
1. Introduction
2. Information We Collect
Account Information (Voluntarily Provided): When you create an account on ToolByte, we collect the following personal data:
• Full Name - Account identification and personalization (Required)
• Email Address - Account authentication, communications, and notifications (Required)
• Password - Account security, stored in securely hashed format using bcrypt; we never store plaintext passwords (Required)
Usage Analytics (Automatically Collected): When you use any of our tools, we automatically collect:
• Tool Name: The specific tool you accessed (e.g., CSS Minifier, UUID Generator)
• Tool Category: The category of the tool used
• Session ID: A unique, anonymized identifier for your browsing session
• IP Address: Your Internet Protocol address, used for security, rate limiting, and approximate geolocation
• User Agent: Your browser type, version, and operating system information
• Parameters: Non-sensitive, non-personal parameters used with tools (passwords and secrets are explicitly excluded from logging)
• Processing Time: The duration of tool operations
• Success Status: Whether the tool operation completed successfully
• Error Messages: Technical error details if an operation fails (used for debugging)
• Timestamp: The date and time when the tool was used
Activity Data (Registered Users): For users with a registered account, we additionally track activity type (e.g., login, tool usage, profile updates), activity descriptions, session information, and timestamps and IP addresses associated with activities.
Automatically Collected Technical Information: Regardless of whether you have an account, we automatically collect browser type and version, operating system and device type, referring website URL, pages visited within ToolByte and navigation patterns, date and time of each visit, time spent on individual pages, and screen resolution and viewport size.
Information We Do NOT Collect:
• We do NOT collect or store the content you process through our tools. All tool processing occurs in real-time and processed content is not retained on our servers.
• We do NOT collect payment or financial information (ToolByte is a free platform).
• We do NOT collect sensitive personal data such as biometric data, health data, religious or political beliefs, or sexual orientation.
• Full Name - Account identification and personalization (Required)
• Email Address - Account authentication, communications, and notifications (Required)
• Password - Account security, stored in securely hashed format using bcrypt; we never store plaintext passwords (Required)
Usage Analytics (Automatically Collected): When you use any of our tools, we automatically collect:
• Tool Name: The specific tool you accessed (e.g., CSS Minifier, UUID Generator)
• Tool Category: The category of the tool used
• Session ID: A unique, anonymized identifier for your browsing session
• IP Address: Your Internet Protocol address, used for security, rate limiting, and approximate geolocation
• User Agent: Your browser type, version, and operating system information
• Parameters: Non-sensitive, non-personal parameters used with tools (passwords and secrets are explicitly excluded from logging)
• Processing Time: The duration of tool operations
• Success Status: Whether the tool operation completed successfully
• Error Messages: Technical error details if an operation fails (used for debugging)
• Timestamp: The date and time when the tool was used
Activity Data (Registered Users): For users with a registered account, we additionally track activity type (e.g., login, tool usage, profile updates), activity descriptions, session information, and timestamps and IP addresses associated with activities.
Automatically Collected Technical Information: Regardless of whether you have an account, we automatically collect browser type and version, operating system and device type, referring website URL, pages visited within ToolByte and navigation patterns, date and time of each visit, time spent on individual pages, and screen resolution and viewport size.
Information We Do NOT Collect:
• We do NOT collect or store the content you process through our tools. All tool processing occurs in real-time and processed content is not retained on our servers.
• We do NOT collect payment or financial information (ToolByte is a free platform).
• We do NOT collect sensitive personal data such as biometric data, health data, religious or political beliefs, or sexual orientation.
3. How We Use Your Information
We use the information we collect for the following specific purposes:
• Provide and operate the Service - Account data, session data
• Process your tool requests - Usage analytics, session data
• Improve and optimize our tools - Usage analytics, performance data
• Generate aggregated analytics - Anonymized usage statistics
• Detect and prevent fraud, abuse, and security threats - IP address, user agent, activity data
• Send service-related notifications - Email address
• Respond to support inquiries - Account data, activity data
• Display relevant advertisements - Anonymized browsing data (via Google AdSense)
• Analyze website traffic and usage patterns - Browsing data (via Google Analytics)
• Comply with legal obligations - As required by applicable law
We do NOT use your personal information for automated decision-making or profiling that produces legal effects concerning you.
• Provide and operate the Service - Account data, session data
• Process your tool requests - Usage analytics, session data
• Improve and optimize our tools - Usage analytics, performance data
• Generate aggregated analytics - Anonymized usage statistics
• Detect and prevent fraud, abuse, and security threats - IP address, user agent, activity data
• Send service-related notifications - Email address
• Respond to support inquiries - Account data, activity data
• Display relevant advertisements - Anonymized browsing data (via Google AdSense)
• Analyze website traffic and usage patterns - Browsing data (via Google Analytics)
• Comply with legal obligations - As required by applicable law
We do NOT use your personal information for automated decision-making or profiling that produces legal effects concerning you.
4. Legal Basis for Processing (GDPR)
If you are located in the European Economic Area (EEA), the United Kingdom (UK), or any jurisdiction where GDPR or equivalent legislation applies, we process your personal data based on the following legal grounds:
• Consent: Where you have given clear, affirmative consent for us to process your personal data for specific purposes (e.g., cookies, marketing communications). You may withdraw consent at any time.
• Performance of Contract: Processing necessary to provide the Service you have requested, including maintaining your account and delivering tool functionality.
• Legitimate Interest: Processing necessary for our legitimate business interests (e.g., improving the Service, ensuring security, preventing fraud), provided these interests are not overridden by your fundamental rights and freedoms.
• Legal Obligation: Processing necessary to comply with applicable laws, regulations, court orders, or government requests.
• Consent: Where you have given clear, affirmative consent for us to process your personal data for specific purposes (e.g., cookies, marketing communications). You may withdraw consent at any time.
• Performance of Contract: Processing necessary to provide the Service you have requested, including maintaining your account and delivering tool functionality.
• Legitimate Interest: Processing necessary for our legitimate business interests (e.g., improving the Service, ensuring security, preventing fraud), provided these interests are not overridden by your fundamental rights and freedoms.
• Legal Obligation: Processing necessary to comply with applicable laws, regulations, court orders, or government requests.
6. Third-Party Services
Google Analytics: We use Google Analytics to analyze website traffic and usage patterns. Data collected includes page views, session duration, bounce rate, approximate geographic location (based on anonymized IP), device and browser information, and referral sources. You can opt out by installing the Google Analytics Opt-out Browser Add-on. Google's Privacy Policy: https://policies.google.com/privacy
Google AdSense: We use Google AdSense to display advertisements on ToolByte. Google AdSense may use cookies and web beacons to serve ads based on your prior visits to our website or other websites. You can control ad personalization through Google Ad Settings (https://adssettings.google.com/). Google's Privacy Policy: https://policies.google.com/privacy
We do not have access to or control over the cookies and tracking technologies used by these third-party services.
Google AdSense: We use Google AdSense to display advertisements on ToolByte. Google AdSense may use cookies and web beacons to serve ads based on your prior visits to our website or other websites. You can control ad personalization through Google Ad Settings (https://adssettings.google.com/). Google's Privacy Policy: https://policies.google.com/privacy
We do not have access to or control over the cookies and tracking technologies used by these third-party services.
7. Data Sharing and Disclosure
We do NOT sell, rent, or trade your personal information to any third party.
We may share your data only in the following circumstances:
• Service Providers: We may share data with trusted third-party service providers who assist us in operating the platform (e.g., cloud hosting, analytics providers). These providers are contractually obligated to protect your data and use it only for the purposes we specify.
• Legal Requirements: We may disclose your data when required to do so by law, court order, subpoena, or government request, or when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
• Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your data may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal data.
• With Your Consent: We may share your data with third parties when you have given us your explicit, informed consent to do so.
• Aggregated and Anonymized Data: We may share aggregated, de-identified, or anonymized data that cannot reasonably be used to identify you, for purposes such as industry analysis, research, or marketing.
We may share your data only in the following circumstances:
• Service Providers: We may share data with trusted third-party service providers who assist us in operating the platform (e.g., cloud hosting, analytics providers). These providers are contractually obligated to protect your data and use it only for the purposes we specify.
• Legal Requirements: We may disclose your data when required to do so by law, court order, subpoena, or government request, or when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
• Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your data may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal data.
• With Your Consent: We may share your data with third parties when you have given us your explicit, informed consent to do so.
• Aggregated and Anonymized Data: We may share aggregated, de-identified, or anonymized data that cannot reasonably be used to identify you, for purposes such as industry analysis, research, or marketing.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law:
• Account Data (name, email, hashed password): Until you delete your account, or 3 years after last login if inactive
• Usage Analytics: 24 months from collection
• Activity Logs: 12 months from collection
• Session Data: Automatically expires based on session configuration (typically when browser closes or after configured timeout)
• Google Analytics Data: Subject to Google's data retention policies (default: 26 months)
Upon expiration of the retention period, data is securely deleted or anonymized so that it can no longer be associated with you.
You may request deletion of your personal data at any time by contacting us.
• Account Data (name, email, hashed password): Until you delete your account, or 3 years after last login if inactive
• Usage Analytics: 24 months from collection
• Activity Logs: 12 months from collection
• Session Data: Automatically expires based on session configuration (typically when browser closes or after configured timeout)
• Google Analytics Data: Subject to Google's data retention policies (default: 26 months)
Upon expiration of the retention period, data is securely deleted or anonymized so that it can no longer be associated with you.
You may request deletion of your personal data at any time by contacting us.
9. Data Security
We implement appropriate technical and organizational measures to safeguard your personal data against unauthorized access, alteration, disclosure, or destruction:
• Encryption in Transit: All data transmitted between your browser and our servers is encrypted using HTTPS (TLS/SSL)
• Password Security: User passwords are hashed using the bcrypt algorithm before storage; we never store or have access to your plaintext password
• Database Security: Database access is restricted and protected by authentication controls
• Access Controls: Administrative access to personal data is restricted to authorized personnel on a need-to-know basis
• Session Security: Sessions are protected with secure, HTTP-only cookies and CSRF token validation
• Regular Updates: We keep our software dependencies and server infrastructure up to date with the latest security patches
• Incident Response: We maintain incident response procedures to promptly address any data breaches. In the event of a breach affecting your data, we will notify you and relevant authorities as required by applicable law.
While we strive to use commercially reasonable means to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure.
• Encryption in Transit: All data transmitted between your browser and our servers is encrypted using HTTPS (TLS/SSL)
• Password Security: User passwords are hashed using the bcrypt algorithm before storage; we never store or have access to your plaintext password
• Database Security: Database access is restricted and protected by authentication controls
• Access Controls: Administrative access to personal data is restricted to authorized personnel on a need-to-know basis
• Session Security: Sessions are protected with secure, HTTP-only cookies and CSRF token validation
• Regular Updates: We keep our software dependencies and server infrastructure up to date with the latest security patches
• Incident Response: We maintain incident response procedures to promptly address any data breaches. In the event of a breach affecting your data, we will notify you and relevant authorities as required by applicable law.
While we strive to use commercially reasonable means to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure.
10. Your Rights and Choices
Depending on your location and applicable data protection laws, you may have the following rights regarding your personal data:
• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete personal data
• Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data, subject to legal retention requirements
• Right to Data Portability: Request your personal data in a structured, commonly used, machine-readable format
• Right to Object: Object to the processing of your personal data for certain purposes, including direct marketing
• Right to Restrict Processing: Request that we limit the processing of your personal data under certain conditions
• Right to Withdraw Consent: Withdraw your consent at any time where processing is based on consent, without affecting the lawfulness of prior processing
• Right to Lodge a Complaint: File a complaint with a supervisory authority if you believe your data protection rights have been violated
To exercise any of these rights, please contact us at legal@duodev.in with the subject line "Privacy Rights Request - ToolByte".
We will respond to your request within 30 days. There is no fee for exercising your rights, unless your request is manifestly unfounded or excessive.
• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete personal data
• Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data, subject to legal retention requirements
• Right to Data Portability: Request your personal data in a structured, commonly used, machine-readable format
• Right to Object: Object to the processing of your personal data for certain purposes, including direct marketing
• Right to Restrict Processing: Request that we limit the processing of your personal data under certain conditions
• Right to Withdraw Consent: Withdraw your consent at any time where processing is based on consent, without affecting the lawfulness of prior processing
• Right to Lodge a Complaint: File a complaint with a supervisory authority if you believe your data protection rights have been violated
To exercise any of these rights, please contact us at legal@duodev.in with the subject line "Privacy Rights Request - ToolByte".
We will respond to your request within 30 days. There is no fee for exercising your rights, unless your request is manifestly unfounded or excessive.
11. International Data Transfers
ToolByte is operated by Duo Dev Technologies from India. If you are accessing our Service from outside India, your data may be transferred to, stored, and processed in India or other countries where our service providers operate.
When we transfer personal data internationally, we ensure that appropriate safeguards are in place, which may include Standard Contractual Clauses (SCCs) approved by relevant authorities, adequacy decisions by data protection authorities, or your explicit consent to the transfer.
By using ToolByte, you acknowledge and consent to the transfer and processing of your data in India and other jurisdictions, where data protection laws may differ from those in your country of residence.
When we transfer personal data internationally, we ensure that appropriate safeguards are in place, which may include Standard Contractual Clauses (SCCs) approved by relevant authorities, adequacy decisions by data protection authorities, or your explicit consent to the transfer.
By using ToolByte, you acknowledge and consent to the transfer and processing of your data in India and other jurisdictions, where data protection laws may differ from those in your country of residence.
12. Children's Privacy
ToolByte is not intended for use by children under the age of 16 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children.
If you are a parent or guardian and discover that your child has provided personal information to us, please contact us immediately at legal@duodev.in. We will take prompt steps to delete such information from our systems.
If you are a parent or guardian and discover that your child has provided personal information to us, please contact us immediately at legal@duodev.in. We will take prompt steps to delete such information from our systems.
13. India-Specific Provisions (DPDP Act 2023)
As Duo Dev Technologies is based in India, the following provisions apply pursuant to the Information Technology Act, 2000, the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023 (DPDP Act):
• Data Principal Rights: As a Data Principal (user), you have the right to access, correct, and erase your personal data, and the right to nominate another person to exercise your rights in the event of death or incapacity.
• Consent: We obtain your consent before collecting and processing personal data. Consent may be withdrawn at any time by contacting us.
• Grievance Redressal: If you have any grievances regarding the processing of your personal data, you may contact our Grievance Officer at legal@duodev.in with the subject line "Privacy Grievance - ToolByte." We will acknowledge your complaint within 48 hours and resolve it within 30 days.
• Data Fiduciary Obligations: As a Data Fiduciary under the DPDP Act, we implement reasonable security safeguards to protect your personal data, ensure data accuracy, and delete data when it is no longer necessary.
• Data Breach Notification: In the event of a personal data breach, we will notify the Data Protection Board of India and affected Data Principals as required under the DPDP Act.
• Data Principal Rights: As a Data Principal (user), you have the right to access, correct, and erase your personal data, and the right to nominate another person to exercise your rights in the event of death or incapacity.
• Consent: We obtain your consent before collecting and processing personal data. Consent may be withdrawn at any time by contacting us.
• Grievance Redressal: If you have any grievances regarding the processing of your personal data, you may contact our Grievance Officer at legal@duodev.in with the subject line "Privacy Grievance - ToolByte." We will acknowledge your complaint within 48 hours and resolve it within 30 days.
• Data Fiduciary Obligations: As a Data Fiduciary under the DPDP Act, we implement reasonable security safeguards to protect your personal data, ensure data accuracy, and delete data when it is no longer necessary.
• Data Breach Notification: In the event of a personal data breach, we will notify the Data Protection Board of India and affected Data Principals as required under the DPDP Act.
14. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Duo Dev Technologies
• Email: legal@duodev.in
• Phone: +91 94876 90260
• Registered Address: 2/45, JJ Colony, Near Common Service Centre, Mettupattithathanur, Salem, Tamil Nadu - 636103, India
• GSTIN: 33AAWFD9000D1ZM
• Website: https://duodev.in
• Legal Center: https://legal.duodev.in
Grievance Officer: For privacy-related grievances under Indian law, please contact our Grievance Officer at legal@duodev.in with the subject line "Privacy Grievance - ToolByte."
Response Times:
• General privacy inquiries: 5-7 business days
• Data access, correction, or deletion requests: Within 30 days
• Privacy grievances (India): Acknowledgment within 48 hours; resolution within 30 days
• Data breach notifications: As required by applicable law
Duo Dev Technologies
• Email: legal@duodev.in
• Phone: +91 94876 90260
• Registered Address: 2/45, JJ Colony, Near Common Service Centre, Mettupattithathanur, Salem, Tamil Nadu - 636103, India
• GSTIN: 33AAWFD9000D1ZM
• Website: https://duodev.in
• Legal Center: https://legal.duodev.in
Grievance Officer: For privacy-related grievances under Indian law, please contact our Grievance Officer at legal@duodev.in with the subject line "Privacy Grievance - ToolByte."
Response Times:
• General privacy inquiries: 5-7 business days
• Data access, correction, or deletion requests: Within 30 days
• Privacy grievances (India): Acknowledgment within 48 hours; resolution within 30 days
• Data breach notifications: As required by applicable law