Privacy Policy

Effective Date: March 29, 2026

Last Updated: March 29, 2026

This Privacy Policy describes how Can I Connect ("we," "us," or "our") collects, uses, and protects information when you use our website at caniconnect.com and related domains (cic.to, caniconnect.to) (collectively, the "Service").

1. Information We Do Not Collect

We do not collect, store, or process:

• Personal names, email addresses, or contact information
• IP addresses of website visitors
• Browser fingerprints or device identifiers
• Cookies or cross-site tracking data
• Account credentials (no accounts exist)

2. Information Collected Automatically

2.1 Client-Side Connectivity Checks

When you use the Service, your browser sends HTTPS requests directly to third-party endpoints (e.g., cloud providers, gaming services). These requests travel directly from your browser to those services and do not pass through our servers. The response time and reachability data is processed entirely in your browser.

2.2 Server-Side Probes

Our servers periodically probe publicly accessible endpoints from multiple geographic regions. This data does not involve any user information. Probe results (endpoint URL, response time, HTTP status code, region, and timestamp) are stored in our database for up to 30 days.

2.3 On-Demand Probes

When you request a server-side probe of a custom URL, the URL is validated (HTTPS only, no private/internal IP ranges) and probed from our servers. The URL and probe results are stored for up to 30 days. No user-identifying information is attached to these results.

3. Crowdsourced Data (Opt-In)

If you voluntarily enable the "Share Your Results" feature, the following data is transmitted to our servers:

• The endpoint URL that was tested
• Response time in milliseconds
• HTTP status code (when available)
• Whether the endpoint was reachable
• A randomly generated session hash (created fresh each browser session, not linked to your identity)

We do not transmit your IP address, browser user agent, device information, or any personally identifiable information with crowdsourced submissions. Approximate geographic region may be inferred from CDN edge headers for aggregation purposes only.

Crowdsourced data is subject to statistical validation. Submissions with latency values exceeding 3 standard deviations from the rolling median are automatically rejected. Community statistics are only displayed when a minimum of 5 independent reports exist for a given endpoint.

Crowdsourced data is retained for up to 30 days.

4. Local Storage

The Service uses your browser's localStorage to store:

• Theme preference: your selected color scheme (light, dark, or system)
• Crowdsource opt-in: whether you have enabled data sharing
• Favorites: which curated pages you have bookmarked

This data is stored entirely in your browser and is never transmitted to our servers. You may clear this data at any time through your browser settings.

A session hash is stored in sessionStorage and is automatically cleared when you close your browser tab.

5. Custom Lists

Custom URL lists are encoded into the page URL using client-side compression. They are never transmitted to or stored on our servers. The shareable URL itself contains the complete list.

6. Third-Party Services

6.1 Content Delivery

The Service is delivered via Bunny CDN. Bunny CDN may process standard HTTP headers (including IP addresses) as part of content delivery. Please refer to Bunny.net's Privacy Policy for details.

6.2 Third-Party Endpoints

Connectivity checks send requests to third-party services. These services are subject to their own privacy policies. We do not control and are not responsible for the privacy practices of these third-party services.

7. Data Retention

Data Type	Retention Period
Server probe results	30 days
On-demand probe results	30 days
Crowdsourced ping data	30 days
localStorage data	Until cleared by user
sessionStorage data	Until browser tab is closed

8. Data Security

All data in transit is encrypted using TLS (HTTPS). Our database is hosted on infrastructure with access controls. We do not store personally identifiable information, minimizing the risk and impact of any potential data breach.

9. Children's Privacy

The Service is not directed at children under the age of 13. We do not knowingly collect any personal information from children.

10. International Users

The Service may be accessed from anywhere in the world. Server probes operate from multiple geographic regions. By using the Service, you acknowledge that anonymized, aggregated data may be processed in regions different from your own.

11. Your Rights

Since we do not collect personal information, traditional data subject rights (access, deletion, portability) do not apply in the typical sense. However:

• You may disable crowdsource data sharing at any time by toggling the setting off
• You may clear all local data through your browser settings
• You may inspect all data sent during a session via the activity log

12. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be reflected by updating the "Last Updated" date at the top of this page. Continued use of the Service after changes constitutes acceptance of the revised policy.

13. Contact

If you have questions about this Privacy Policy, you may open an issue on our GitHub repository.