PRIVACY

Website data and local proxy data stay clearly separated.

The ghc-api project website and a ghc-api instance you run yourself are independent systems. This page explains what each one handles.

Effective: July 16, 2026

01

Project website

ghc-api.es2q.com is an independent, primarily static website. nginx serves the pages, and a lightweight API is used only for downloads, feedback, subscriptions, and unsubscribe actions.

  • No third-party analytics, advertising, or tracking scripts.
  • No language-tracking cookie. The root path uses HTTP Accept-Language to choose Chinese or English.
  • The website never connects to, reads, or uploads requests, configuration, or sessions from your local ghc-api instance.
  • The server may retain short-lived standard access logs for diagnostics and abuse prevention.
02

Feedback and subscription data

Form data is stored directly as plain-text JSON Lines files in a restricted server data directory. No relational database is used, and this website project does not encrypt the files.

FeedbackCategory, message, optional email, locale, source page, timestamp, and feedback ID
SubscriptionEmail, locale, source, subscription ID, random unsubscribe token, timestamp, and status events
Not written to form filesRaw IP addresses, GitHub tokens, ghc-api request data, or local sessions

Do not submit secrets. Never include tokens, API keys, private source code, sensitive request bodies, or unnecessary personal data in feedback.

Email delivery is outside this website project. A separate mail system reads subscription records and should include the private unsubscribe link in every message. Unsubscribe appends a new status event; active lists must honor the latest event.

03

Your local ghc-api instance

Local proxy data is not sent to this website. ghc-api defaults and optional behaviors include:

  • Recent API requests stay in process memory by default, with a configurable default limit of 1,000.
  • Requests may contain headers, payloads, responses, and raw SSE, so the dashboard can expose sensitive information.
  • Request-file persistence must be explicitly enabled.
  • Sessions and local configuration remain on the machine running ghc-api.
  • OneDrive access is disabled by default and only runs after explicit enablement.

If you expose the local dashboard over a network, protect every administration page and data API with a reverse proxy.

04

External links and public statistics

The site links to GitHub, PyPI, PyPIStats, and PePy. Your browser visits those services only after you follow a link. Download counts are fetched and cached infrequently by this site's backend, rather than requested directly by every visitor.

05

Subscribe, unsubscribe, and data requests

  • No account is required to subscribe.
  • Unsubscribe uses a high-entropy private token and requires no login.
  • Opening the unsubscribe page does not change status until you confirm.
  • After unsubscribe, the mail system must not treat the record as active.
  • To request feedback correction or deletion, use the community page and include the feedback ID.
Go to community & feedback