Back to KeySocket
1. Introduction
Welcome to KeySocket.eu ("we," "us," or "our"). We connect users to their remote servers via a web-based SSH interface. We are committed to protecting your personal data and being transparent about how we handle your sensitive SSH credentials.
By using KeySocket.eu, you agree to the collection and use of information in accordance with this policy.
2. The Data We Collect
We collect data in two categories: Persistent Data (stored for a limited time) and Ephemeral Data (processed in memory and never stored).
A. Personal Information (Persistent via Session)
When you log in via Google OAuth, we receive and store the following information in a temporary session file to identify you:
- Google ID
- Email Address
- Full Name
- Profile Picture
B. SSH Credentials (Ephemeral - Strictly In-Memory)
To establish a connection to your remote server, you provide:
- Hostnames / IP Addresses
- Usernames
- Passwords
- Private SSH Keys
- Passphrases
Security Commitment: We do not store your SSH passwords, private keys, or passphrases on our disk or database. These credentials are held in volatile memory (RAM) only for the duration of your active WebSocket connection. Once you close the tab or the connection terminates, this data is immediately wiped from memory.
C. Technical Usage Data
Our servers automatically log specific technical data for security and debugging purposes:
- IP Address
- User Agent (Browser type)
- Connection timestamps
- Success/Failure status of authentication attempts
3. How We Use Your Data
We use your data for the following specific purposes:
- Authentication: To verify your identity via Google and maintain your login session.
- Service Provision: To proxy SSH traffic between your browser and your remote server (Node.js/SSH2).
- Security: To prevent abuse, DDoS attacks, and unauthorized access (using Cloudflare Turnstile).
- Debugging: To analyze server errors via local log files (server.log).
4. Third-Party Services
We use trusted third-party services to operate KeySocket.eu. We only share the minimum data necessary.
| Service |
Purpose |
Data Shared |
| Google OAuth |
Authentication |
Email, Name, Google ID, Profile Picture |
| Cloudflare Turnstile |
Bot Protection |
Session Data, IP Address |
| Cloudflare CDN |
Content Delivery |
IP Address, User Agent |
| OVH Hosting |
Infrastructure |
None (Infrastructure Provider) |
Cloudflare Turnstile: We use Turnstile to verify that you are a human and not a bot. This service may analyze your session data and IP address to calculate a risk score.
5. Data Retention
We practice data minimization. We only keep data for as long as necessary:
- User Sessions: Stored for 24 hours. Expired sessions are automatically deleted from our server every 6 hours.
- SSH Credentials: 0 seconds retention. Discarded immediately upon connection closure.
- Server Logs: Retained for 30 days for security auditing, then overwritten.
6. Cookies
We use cookies to maintain the functionality of our service.
- connect.sid: A strictly necessary session cookie used to keep you logged in.
- cf_clearance / others: Set by Cloudflare to manage network security and bot protection.
7. Security Measures
We employ robust security measures to protect your data:
- Encryption in Transit: All traffic between your browser and KeySocket.eu is encrypted via HTTPS/TLS.
- SSRF Protection: We validate all destination IP addresses to prevent internal network scanning.
- No credential logging: Our logging system is configured to exclude passwords and private keys.
8. Your Rights (GDPR)
If you are a user based in the European Union, you have the right to:
- Access the personal data we hold about you.
- Request deletion of your data (Right to be Forgotten).
- Object to the processing of your data.
- Request a copy of your data (Data Portability).
To exercise these rights, please contact us at the email below.