Privacy Policy — SXMWARE

01 Overview

SXMWARE ("we", "us", "our") respects your privacy and is committed to being transparent about the information we collect when you use our Site (sxm.tools) and software products. This Privacy Policy explains what data we collect, why we collect it, how it is used, and your rights regarding that data.

By using SXMWARE services, you acknowledge and consent to the data practices described in this policy.

02 Data We Collect

Category	Examples	Source
Account Data	Username, email address, hashed password, registration date	Provided by you at registration
Profile Data	Display name, biography, avatar, banner, widgets, social links, profile background media	Provided by you in dashboard
Payment Data	Ko-fi transaction ID, payment timestamp, plan type, amount	Ko-fi webhook (we do not store card details)
License & HWID Data	Hashed hardware fingerprint, license key, activation timestamp, reset log	SXMWARE software at activation
Usage Data	API request logs, feature usage counters, login timestamps, IP address (hashed)	Automatically from server logs
Device Data	Browser type, OS (for web), client OS version (for software)	Automatically from requests

03 How We Use Your Data

We use collected data exclusively for the following purposes:

Creating and managing your account and authentication sessions.
Verifying software licenses and processing HWID-based activations and resets.
Processing payments and activating subscriptions through Ko-fi webhook events.
Delivering purchased software and subscription benefits.
Displaying your public profile page at sxm.tools/username.
Providing customer support and responding to inquiries.
Detecting fraud, abuse, and unauthorized use of licenses.
Improving our products and services through aggregated, anonymized analytics.
Sending critical service notifications (e.g., subscription expiry) where email is provided.

We do not sell your personal data to third parties. We do not use your data for advertising or marketing to third-party platforms.

04 HWID Data & License Telemetry

SXMWARE software performs license checks by transmitting a cryptographic hash of your hardware fingerprint to our verification API at each launch. This hash is a one-way irreversible transformation — it cannot be used to reconstruct your hardware details.

We store: the hashed HWID, the associated license key, activation date, number of resets used, and software version. We do not store raw hardware serial numbers, CPU model details, or any data that could individually identify your physical machine beyond the purposes of license verification.

License verification requests are logged with a timestamp and a truncated, hashed IP address for security auditing. These logs are retained for 90 days and then purged automatically.

05 Data Sharing

We share data only in the following limited circumstances:

Ko-fi: Payment processing. Ko-fi's privacy policy governs their handling of payment data.
Hosting Providers: Infrastructure partners (server and database hosting) who process data solely on our behalf under confidentiality obligations.
Legal Requirements: If compelled by law, court order, or governmental authority, we may disclose required data. We will notify affected users where legally permitted.

No data is shared with third parties for commercial or marketing purposes.

06 Data Retention

Account data is retained for as long as your account is active. If you request deletion, we will remove your account and associated personal data within 30 days, except where retention is required by law.
License data (HWID hash + activation records) is retained for the life of the license for fraud prevention purposes.
Payment records received via Ko-fi are retained for 3 years for accounting and dispute resolution purposes.
Server logs are retained for 90 days and then automatically purged.

07 Security

We implement reasonable technical and organizational measures to protect your data, including:

Passwords stored using bcrypt with appropriate cost factors.
HWID values stored as one-way cryptographic hashes only.
All data in transit encrypted via TLS/HTTPS.
JWT-based session authentication with short expiry windows.
Rate limiting and brute-force protection on all authentication endpoints.

No system is completely secure. We cannot guarantee absolute security and are not liable for unauthorized access resulting from factors outside our reasonable control.

08 Cookies & Local Storage

SXMWARE uses browser localStorage (not traditional cookies) to store your authentication JWT token client-side. This token is used solely to authenticate your requests to the SXMWARE API and is never shared with third parties.

We do not use tracking cookies, advertising pixels, or analytics SDKs that report to third-party services.

09 Third-Party Services

SXMWARE integrates with the following third-party services. Their respective privacy policies apply to data they receive:

Ko-fi (ko-fi.com) — payment processing and subscription management.
Google Fonts — typeface delivery (Cinzel, Rajdhani). Font requests are made to Google's servers at page load.
Iconify — icon delivery via CDN. Icon name queries are sent to Iconify's API.

10 Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Access: Request a copy of the personal data we hold about you.
Correction: Request correction of inaccurate or incomplete data.
Deletion: Request deletion of your account and associated personal data.
Portability: Request your data in a machine-readable format.
Objection: Object to certain processing activities.

To exercise any of these rights, contact us at support@sxm.tools. We will respond within 30 days. Note that exercising deletion rights will permanently revoke all active licenses associated with your account, with no refund.

11 Children's Privacy

SXMWARE does not knowingly collect personal data from children under the age of 13. If we become aware that we have inadvertently collected such data, we will delete it promptly. If you believe a child has provided us with personal data, please contact us immediately.

12 Changes to This Policy

SXMWARE reserves the right to modify this Privacy Policy at any time. Changes take effect upon publication on the Site. We encourage you to review this page periodically. Your continued use of SXMWARE services after any update constitutes acceptance of the revised policy.

13 Contact

For privacy-related inquiries, data requests, or to report a concern: