Privacy Policy

Last updated: 2026-04-22

This Privacy Policy explains what information we collect when you use adultnode.com ("AdultNode"), why we collect it, and what your choices are. AdultNode is operated from Denmark and acts as the data controller for the personal data described below.

1. What we collect

AdultNode collects only what it needs to run the directory:

• Server logs. Every request hits our reverse proxy (Caddy) and our Node.js application. We log the request time, URL, response status, user-agent string, and a truncated IP address. Logs are retained for up to 30 days and are used for security, abuse prevention, and capacity planning.
• Outbound-click logs. When you click a "/go/..." affiliate link, we log the offer ID, timestamp, user-agent, and a truncated IP so we can reconcile commissions and detect fraud. We do not share this log with destination platforms.
• Form submissions. If you submit the contact, claim, or DMCA form, we store the information you provide (name, email, message, and any URLs you reference) for as long as is necessary to respond to you, and then for up to 2 years for record-keeping.
• Google Analytics 4. We use Google Analytics 4 to understand aggregate usage patterns (page views, referrers, device class, country-level geography). GA4 sets first-party cookies (_ga, _ga_*) and sends pseudonymised events to Google; IP addresses are anonymised by GA4 on receipt. For visitors in the EEA, the UK, and Switzerland we do not load GA4 at all until you accept analytics on the consent banner. Outside those regions we load GA4 by default; you can still opt out via the "Cookie settings" link in the footer, by enabling Global Privacy Control (Sec-GPC) in your browser, or by installing the Google Analytics opt-out add-on. We never enable Google Signals, ad personalisation, or remarketing audiences.
• Cloudflare Web Analytics. A privacy-preserving, cookieless beacon (beacon.min.js) that counts page views and basic timings without persistent identifiers. It runs without consent because it cannot identify you; you can block it by blocking static.cloudflareinsights.com.
• Cloudflare. Our DNS and edge CDN is Cloudflare. They receive the same request metadata listed above and may set their own security cookies (__cf_bm, cf_clearance) to distinguish humans from bots. See Cloudflare's privacy policy.

2. What we do NOT collect

• We do not require an account to browse.
• We do not use behavioural advertising cookies or ad-network pixels.
• We do not sell or rent personal data to anyone.
• We do not share our click logs with destination platforms beyond the affiliate sub-ID necessary to attribute a referral.

3. Cookies & similar technologies

AdultNode sets the following first-party cookies:

• an_age — remembers that you confirmed you are 18+. Strictly necessary for accessing an adult site under applicable law; no consent required. Expires after 30 days.
• an_analytics — records your choice on the cookie banner (granted or denied). Strictly necessary for us to honour that choice. Expires after 180 days.
• an_session — signed session cookie for logged-in creators (only set after you sign in with a magic link). Strictly necessary for authentication. Expires with the session.
• _ga, _ga_* — set by Google Analytics 4 to distinguish users, only after you accept analytics on the cookie banner (EEA/UK/CH) or by default outside those regions. Expires after 13 months. See section 1.

You can change your analytics choice any time via the "Cookie settings" link in the footer. Most browsers also let you block or delete cookies via their settings; if you block an_age you'll be asked to re-confirm every session, and if you block an_session you won't be able to sign in.

4. Outbound links & third parties

When you click an outbound link, you leave AdultNode and are handed off to an independently operated third-party adult platform. Once you are on that platform, their privacy policy applies, not ours. We encourage you to read it before signing up.

5. Your rights (GDPR / UK GDPR / CCPA)

If you are in the EEA, the UK, or California, you have the right to access, correct, delete, port, or restrict processing of your personal data, and to object to processing based on legitimate interests. To exercise any of these rights, email [email protected]. We respond within 30 days.

6. Data retention

• Server & click logs: 30 days.
• Contact / claim / DMCA submissions: up to 2 years, then deleted.
• Google Analytics events: 14 months (GA4 default).

7. Security

Traffic between your browser and AdultNode is always encrypted with TLS 1.3 (Let's Encrypt certificates, "Full (strict)" mode at Cloudflare). Our application runs as an unprivileged systemd service on a hardened Linux VPS with UFW firewall, Fail2ban, and SSH key-only authentication.

8. International transfers

AdultNode is hosted in Germany (Hetzner Nuremberg). Google Analytics data is processed by Google LLC in the United States under the EU–U.S. Data Privacy Framework. Cloudflare processes traffic globally at its nearest edge location.

9. Changes to this policy

We may update this policy from time to time. Material changes will be flagged by bumping the "Last updated" date above. Continued use of the site after a change means you accept the updated policy.

10. Contact

Privacy questions? Email [email protected] or use the contact form.