Privacy Policy

Last Updated: January 13, 2026. No tracking. No cookies. No logs. PGP encryption only. Absolute data minimization.

1. Information We Collect (Zero)

Website Visitors

  • No IP addresses logged
  • No user agents collected
  • No referrers tracked
  • No cookies set
  • No analytics services
  • No third-party embeds

Server Environment

  • Static HTML hosting only
  • nginx access logs → /dev/null
  • No PHP/JS execution
  • Cloudflare proxy (anonymized)
  • Tor/VPN traffic indistinguishable

2. Data Processing Principles

┌─ Privacy by Design ──────────────────────────────────────┐
│ 1. Data Minimization     → Collect ZERO user data       │
│ 2. Privacy by Default    → Static HTML, no JS tracking  │
│ 3. End-to-End Encryption → PGP only for onion mirrors   │
│ 4. No Third Parties      → No Google Analytics/Ads      │
│ 5. Amnesic Infrastructure→ Logs rotated to /dev/null    │
└─────────────────────────────────────────────────────────┘

3. Communication Security

PGP-Only Contact

All documentation updates signed with 0x7B61C9AF213E44A9A4519FCD53A96114723BEB01. Verify signatures before trust.

Documentation Signing Key: 0x7B61C9AF213E44A9A4519FCD53A96114723BEB01

No Email/Discord/Telegram

We never request contact via clearnet services. All legitimate communication PGP-signed only.

4. Cookies & Tracking

Cookie Policy: NONE
├── Session Cookies:     Disabled
├── Persistent Cookies:  Disabled  
├── Third-Party:         Disabled
├── Analytics:           Disabled
└── Fingerprinting:      Static HTML only

Browser Fingerprint: MINIMAL
├── CSS Fingerprint:     Monospace font only
├── Canvas:              Never executed
├── WebGL:               Never executed
├── AudioContext:        Never executed
└── Screen Resolution:   CSS media queries only

5. Hosting & Infrastructure

Provider Transparency

Hosted on privacy-respecting infrastructure. nginx static file serving. No dynamic content generation.

Log Policy

# nginx.conf excerpt
access_log /dev/null combined;
error_log /dev/null error;

# No IP logging, no user agents, no timestamps

CDN Usage

Cloudflare proxy enabled (IP obfuscation). Font Awesome CDN (public icons only). Google Fonts (static CSS).

6. Legal Compliance

GDPR / CCPA Compliance

Article 6(1)(f) legitimate interest → informational website. No personal data processing = no GDPR scope.

Data Subject Rights

  • Right to Access → No data collected
  • Right to Rectification → No data stored
  • Right to Erasure → Automatic (no persistence)
  • Right to Object → No processing occurs

7. Changes to This Policy

Updates PGP-signed and published to all mirrors. Check signature against Documentation Key fingerprint.

$ gpg --verify privacy-policy-2026-01-13.asc privacy-policy-2026-01-13.html
gpg: Signature made Sat 13 Jan 2026
gpg: Good signature from "Kerberos Documentation (2026)" [unknown]
gpg: WARNING: This key is not certified with a trusted signature!
gpg:          There is no indication that the signature belongs to the owner.
Primary key fingerprint: 7B61 C9AF 213E 44A9 A451  9FCD 53A9 6114 723B EB01

Privacy Commitment (Absolute)

KERBEROS DOCUMENTATION HUB PRIVACY GUARANTEE:

1. ZERO user tracking across all visits
2. ZERO cookie storage or localStorage usage  
3. ZERO third-party analytics or advertising
4. ZERO IP address retention or logging
5. ZERO correlation between visits or users
6. PGP-signed policy updates only
7. Static HTML serving exclusively

Your access to these pages is completely anonymous.
No logs exist. No data retained. No exceptions.

user@kerberos-docs:~$ privacy --status
Status: MAXIMUM ✓
_

8. Contact & Disputes

Privacy concerns PGP-encrypted only. Never use clearnet email. Key fingerprint above.

Disputes resolved via PGP-signed arbitration per Terms of Service.

9. Effective Date

This Privacy Policy effective January 13, 2026. Supersedes all prior versions. Applies to kerberoshop.com and onion mirrors.

Questions? Verify this document PGP signature first.