Privacy Policy

Overview

dockerd is a learning platform for Docker. We take your privacy seriously and minimize data collection. This policy explains what data we collect, why, and how we process it.

1. No Account Required

You do not need to create an account to use dockerd. Your learning progress (completed lessons, XP) is stored entirely in your browser's localStorage. We never receive this data.

You can clear this data at any time via your browser settings. No personal information is transmitted to our servers.

2. Hosting & Infrastructure (Dokploy)

dockerd is hosted on a server managed with Dokploy, an open-source deployment platform. Dokploy may log:

• IP addresses of visitors (standard server logs)
• Timestamps and requested URLs
• HTTP status codes and response sizes

These logs are used exclusively for operational purposes: debugging, monitoring server health, and preventing abuse. Logs are retained for a maximum of 14 days and are not shared with third parties.

3. Analytics (Plausible)

We use Plausible Analytics, a privacy-friendly analytics service hosted at analytics.dockerd.lol (self-hosted). Plausible is designed to be GDPR-compliant without cookie banners. Specifically:

• No cookies are set or read
• No personal data (IP addresses, browser fingerprints, etc.) is collected or stored
• Data is aggregated and anonymized at the point of collection
• We only see: page views, referrer sources, browser types, device types, and countries (at a regional level, never specific locations)

Plausible is fully compliant with GDPR, CCPA, and PECR. No consent banner is required. Read Plausible's data policy.

4. What We Do NOT Collect

• No email addresses or names
• No passwords or authentication data
• No tracking cookies
• No social media tracking pixels
• No fingerprinting or canvas data
• No credit card or payment information

5. API Endpoints & Certificate Generation

dockerd provides two API endpoints that are processed server-side:

• /api/lessons — Returns the list of courses and lessons (no personal data)
• /api/certificate — Generates a personalized certificate image. The name you enter and progress data (lessons, XP) are sent as URL parameters to the server

When accessing these endpoints, the following data is processed for the duration of the request:

• Name (certificate only, not stored)
• Progress data (lessons completed, XP — not stored)
• IP address (see section 2 — server logs)

The generated certificate is served as an SVG image and is not stored on the server. It only exists during the HTTP request lifecycle. Both API endpoints are rate-limited to prevent abuse. Data submitted via the certificate page form is not logged or stored.

6. Third-Party Services

We use the following third-party services:

• Cloudflare — Content Delivery Network and reverse proxy (see section 7)
• Plausible Analytics (self-hosted at analytics.dockerd.lol) — privacy-friendly page view analytics
• Dokploy — self-hosted deployment platform (logs IPs as described above)
• Docker Hub / GitHub Container Registry — for pulling application images

7. Content Delivery Network (Cloudflare)

We use Cloudflare as a reverse proxy and Content Delivery Network (CDN) to improve security and delivery speed. Specifically:

• Cloudflare terminates HTTPS connections and forwards requests to our server
• Visitor IP addresses are processed by Cloudflare (required for operation)
• Cloudflare sets essential security cookies (e.g. __cf_bm) for DDoS protection
• Cloudflare is certified under the EU-US Data Privacy Framework (DPF) and provides Data Processing Agreements (DPA) under GDPR
• No analytics or tracking functions from Cloudflare are used

After enabling Cloudflare, our server logs will only contain Cloudflare IP addresses instead of visitor IPs. Cloudflare processes data according to its privacy policy.

8. Data Retention

Server logs (including IP addresses): retained for 14 days, then automatically deleted.

Plausible analytics data: retained indefinitely in anonymized, aggregated form. It cannot be used to identify individuals.

Your learning progress (localStorage): retained in your browser until you clear it. We have no access to this data.

9. Your Rights (GDPR)

As a user, you have the right to:

• Access — request information about what data we hold
• Deletion — request deletion of any server logs
• Objection — object to data processing (you can block Plausible via browser extensions like uBlock Origin)
• Data portability — your learning progress is already on your device

To exercise any of these rights, contact us at [email protected].

10. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page. Continued use of dockerd after changes constitutes acceptance of the updated policy.

11. Contact

For privacy-related inquiries: [email protected]

For general inquiries: [email protected]