Security & Privacy
How BasedNode handles your data, protects your information, and maintains enterprise-grade security — explained in plain language.
Security Practices
BasedNode is built with security as a foundation — not an afterthought. Every system we deploy follows zero-trust principles and industry best practices.
Zero-Trust Architecture
BasedNode operates behind Cloudflare tunnels. There are no open ports, no public IPs exposed, and no direct server access from the internet. Every request is authenticated, encrypted, and inspected before reaching our infrastructure. This means there is no attack surface for common exploits like port scanning, DDoS, or unauthorized access attempts.
Encrypted Communications
All communications with BasedNode services are encrypted using HTTPS/TLS. Whether you are browsing our website, submitting a contact form, or interacting with our APIs, your data is protected with end-to-end encryption in transit. We maintain an A+ SSL/TLS rating and enforce strict security headers (HSTS, CSP, X-Frame-Options).
API Keys & Credentials
All API keys, credentials, and secrets are stored server-side only — never in client-side code, environment variables embedded in builds, or exposed in browser bundles. We use encrypted secret management, and no third-party scripts are loaded that could exfiltrate data. Your keys stay your keys.
Regular Security Audits
Our infrastructure undergoes regular automated vulnerability scanning and dependency audits. All software dependencies are monitored for CVEs, and updates are applied within 48 hours of critical patch releases. We follow the principle of least privilege — every system component has only the permissions it needs.
No Third-Party Tracking
BasedNode does not use any third-party analytics, tracking scripts, or advertising cookies. No Google Analytics, no Facebook Pixel, no social media trackers. Your browsing behavior is not monitored, profiled, or sold. The only data we store locally is your theme preference (dark/light) and language preference, using your browser's localStorage — not cookies.
Privacy Policy
BasedNode ApS (CVR 43750194) is a Danish company registered in Denmark. We take your privacy seriously and are fully compliant with the General Data Protection Regulation (GDPR / Forordning 2016/679).
🇩🇰 Privatlivspolitik — Dansk
Hos BasedNode ApS (CVR 43750194) er vi fuldt ud GDPR-kompatible. Her er en overskuelig gennemgang af, hvordan vi håndterer dine personoplysninger.
Hvilke data indsamler vi?
Når du kontakter os via vores kontaktformular, indsamler vi kun:
- Dit navn
- Din email-adresse
- Din besked (det du skriver til os)
Vi indsamler ikke IP-adresser, browsertype, eller nogen form for sporingsdata.
Hvordan bruger vi dine data?
Dine oplysninger bruges udelukkende til at svare på din henvendelse. Vi bruger dem ikke til markedsføring, nyhedsbreve, eller profilering. Vi sælger aldrig dine data til tredjeparter — punktum.
Hvor længe gemmer vi dem?
Vi opbevarer dine data i maksimalt 12 måneder efter sidste kontakt, medmindre vi indgår et igangværende projekt — i så fald gemmes de, så længe samarbejdet varer, og slettes derefter inden for 6 måneder.
Dine rettigheder
I henhold til GDPR har du ret til:
- Indsigt: Du kan til enhver tid få at vide, hvilke data vi har om dig
- Berigtigelse: Du kan få rettet forkerte oplysninger
- Sletning: Du kan kræve dine data slettet ("retten til at blive glemt")
- Begrænsning: Du kan få behandlingen af dine data begrænset
- Dataportabilitet: Du kan få dine data udleveret i et almindeligt format
Cookies
Vores hjemmeside bruger ikke cookies til sporing. Vi bruger udelukkende localStorage i din browser til at gemme dine præferencer for tema (mørk/lys) og sprog (DA/EN). Disse data forlader aldrig din browser.
Kontakt
Hvis du ønsker at udøve dine rettigheder, eller hvis du har spørgsmål om vores databehandling, så kontakt os på:
BasedNode ApS · CVR 43750194 · Denmark
Vi indsamler aldrig personoplysninger uden dit samtykke. Vi sælger aldrig data til tredjeparter. Vi bruger ikke dine oplysninger til noget andet formål end at hjælpe dig.
🇬🇧 Privacy Policy — English
BasedNode ApS (CVR 43750194), registered in Denmark, is fully GDPR-compliant. Here is a clear overview of how we handle your personal data.
What data do we collect?
When you contact us through our contact form, we collect only:
- Your name
- Your email address
- Your message (what you write to us)
We do not collect IP addresses, browser type, or any form of tracking data.
How do we use your data?
Your information is used solely to respond to your inquiry. We do not use it for marketing, newsletters, or profiling. We never sell your data to third parties — period.
How long do we keep it?
We store your data for a maximum of 12 months after last contact, unless we enter an ongoing project — in which case it is kept for the duration of the collaboration and deleted within 6 months after.
Your rights
Under GDPR, you have the right to:
- Access: Request to know what data we hold about you at any time
- Rectification: Have incorrect data corrected
- Erasure: Request your data be deleted ("right to be forgotten")
- Restriction: Request processing of your data be restricted
- Portability: Receive your data in a commonly used format
Cookies
Our website does not use tracking cookies. We only use browser localStorage to store your theme preference (dark/light) and language preference (DA/EN). These never leave your browser.
Contact
If you wish to exercise your rights, or if you have any questions about our data processing, please contact us at:
BasedNode ApS · CVR 43750194 · Denmark
We never collect personal data without your consent. We never sell data to third parties. We do not use your information for any purpose other than helping you.
In Plain Language
No fine print. No hidden clauses. Here is what you need to know:
We built BasedNode the way we would want to be treated ourselves. Your privacy is not a compliance checkbox — it is a fundamental right. If you ever have concerns, questions, or want us to remove your data, just email us. We reply within 24 hours.