Privacy and Cookie Policy

Effective Date: August 14, 2024

Last Updated: February 9, 2026

Summary: This policy explains what information PasteCode.io collects, how we use it, how cookies and similar technologies work on our Service, and the choices and rights you may have depending on where you live.

1. Scope & Definitions

This Privacy and Cookie Policy (“Policy”) applies to PasteCode.io (the “Service”, “Platform”, “we”, “us”, “our”) and describes how we collect, use, disclose, and protect information when you access or use the Service.

“Personal Data” means information that identifies or can reasonably be linked to an individual (directly or indirectly). “User Content” means content you upload or make available through the Service (e.g., snippets and related text).

2. Information We Collect

2.1 Information You Provide

  • Account information: email address, nickname/username, and an auto-generated user identifier (e.g., UUID).
  • Support and communications: information you send us via email or contact forms (e.g., request details).
  • User Content: snippets and related content you upload or share, including any metadata you choose to add.

2.2 Information We Collect Automatically

  • Device and log data: IP address, timestamps, user-agent, browser/device identifiers, approximate location derived from IP (country/region level), and related security signals.
  • Usage data: interactions with the Service (e.g., pages viewed, buttons clicked), performance and diagnostic data.
  • Account and content metadata: content IDs, visibility settings you choose (public/password-protected/personal), and abuse-prevention signals.

2.3 Sensitive Data Reminder

Please do not upload personal, confidential, or sensitive information unless you have the legal right to do so and you intentionally want to share it. The Service is designed primarily for code snippets; publishing sensitive information may create privacy and security risks.

3. Cookies & Similar Technologies

3.1 What Cookies Are

Cookies are small text files stored on your device that help websites function, remember preferences, and support analytics and security. We may also use similar technologies (e.g., local storage, pixels) for similar purposes.

3.2 Cookie Categories We Use

  • Strictly Necessary / Functional Cookies: These are required for core site functionality, security, and session continuity. Examples may include: user, tos_accepted, cookie_banner_accepted, new_registration, g_state, G_ENABLED_IDPS.

3.3 Analytics, Advertising, and Session Replay

We may use third-party services (such as Microsoft Clarity and Microsoft Advertising) to understand how users interact with the Service, including through metrics, heatmaps, and session replay, and to support marketing/advertising measurement. These providers may use cookies and similar technologies to collect usage information.

Depending on your location, we will request consent where required for non-essential cookies and similar technologies. You can also control cookies through your browser settings (note that disabling cookies may affect functionality).

For more information about Microsoft’s data practices, see the Microsoft Privacy Statement.

3.4 Cookie Retention

Cookie lifetimes vary depending on purpose. Some cookies are session-based and expire when you close your browser; others may persist for a limited time. Where possible, we configure cookie retention to be proportionate to the purpose (commonly ranging from 30 days up to 24 months).

4. How We Use Information

We use information we collect to:

  • Provide and operate the Service (e.g., account creation, authentication, snippet hosting, sharing, and access control).
  • Maintain security and prevent abuse (e.g., spam detection, fraud prevention, investigating suspicious activity).
  • Moderate and enforce policies (e.g., processing reports, responding to legal notices, enforcing Terms of Service).
  • Improve and troubleshoot (e.g., analytics, performance monitoring, debugging, service reliability).
  • Communicate with you (e.g., support responses, policy updates, security notices).

5. Automated Processing & Moderation

We may use automated tools (including machine-learning-based signals) to help detect spam, malicious content, policy violations, and security risks. Automated processing may analyze User Content and related metadata for these purposes. We do not guarantee that all prohibited content will be detected.

If you use client-side encryption features, we may not be able to view the encrypted content. You remain responsible for what you upload and share.

6. Legal Bases (Where Applicable)

Where data protection laws require a legal basis, we process information based on one or more of the following: (a) to perform a contract (provide the Service), (b) legitimate interests (security, abuse prevention, service improvement), (c) compliance with legal obligations, and/or (d) your consent (for example, where required for certain cookies or marketing measurement).

7. How We Share Information

We may share information in the following circumstances:

  • Service providers: with vendors that help us operate the Service (e.g., hosting, security, analytics, email delivery), under contractual obligations to protect information and use it only for providing services to us.
  • Legal and safety reasons: if we believe in good faith that disclosure is reasonably necessary to comply with a valid legal process, respond to lawful requests, enforce our Terms, investigate abuse, or protect the rights, property, or safety of the Service, our users, or others.
  • Business transfers: in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate confidentiality protections.

We do not sell Personal Data in the traditional sense. If we ever engage in practices that are considered a “sale” or “sharing” under certain privacy laws, we will provide appropriate notices and choices as required.

8. Data Retention

We keep Personal Data only as long as necessary for the purposes described in this Policy, unless a longer retention period is required or permitted by law.

  • Server/security logs: generally retained for a limited period (e.g., up to 14 days) unless needed longer for security investigations, abuse prevention, or legal compliance.
  • Account data: retained while your account is active and as needed to provide the Service; deleted or anonymized within a reasonable period after account deletion requests, subject to legal and security exceptions.
  • User Content: retained according to your account status and visibility settings, unless removed for policy/legal reasons or deleted by you (where available).

9. International Transfers

The Service may be accessed globally. Information may be processed in locations where we or our service providers operate. Where required by applicable law, we use appropriate safeguards for cross-border data transfers.

10. Security

We implement reasonable technical and organizational measures designed to protect information from unauthorized access, loss, misuse, alteration, or disclosure. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

Passwords (where applicable) are stored using cryptographic hashing. You are responsible for using strong passwords and keeping your account secure.

11. Your Rights & Choices

Depending on your location, you may have rights regarding your Personal Data, such as access, correction, deletion, portability, restriction, or objection. You may also have the right to withdraw consent where processing is based on consent.

To exercise applicable rights, contact us at [email protected]. We may need to verify your identity before fulfilling certain requests.

You can control cookies through browser settings and, where available, through cookie preference tools on the Service.

12. Children

The Service is not intended for children. If you believe a child has provided us Personal Data, please contact us and we will take appropriate steps. Content involving the sexual exploitation of minors is strictly prohibited and may be reported to appropriate authorities where required or appropriate.

13. Changes to This Policy

We may update this Policy from time to time. Changes become effective when posted. If changes are material, we may provide additional notice (e.g., on the Service or by email where appropriate).

14. Contact

For privacy-related inquiries or requests, contact: [email protected]

Last Comprehensive Revision: February 9, 2026