Privacy Policy

Last updated: 2026-05-11.

3dtrimview is a static, browser-only design tool. There is no account system, no server-side database, and no analytics that tie back to a specific user. This page describes exactly what does and doesn't happen with your data.

What we store on your device

Everything you create — armor trim designs, saved sets, the language you picked, the cookie banner choice — lives in your browser's localStorage. It never leaves the device unless you explicitly use the Share button (which puts an opaque hash in the URL, encoding only the trim selections, not your identity).

• trimview_sets — your saved-set rail entries (names + per-piece armor/dye/pattern/material).
• trimview_lang — the locale you last selected from the footer dropdown.
• trimview_consent — whether you accepted "all" cookies or only "essential" at the banner.

Clearing your browser data wipes all of these. There is no backup on our side.

What we don't store

• Custom skin uploads. When you drop a PNG into the Skin tab, it stays as an in-memory ObjectURL. Nothing is uploaded to our origin.
• Email, name, IP address (beyond standard server logs), payment data, location, or biometrics. We don't collect any of these.
• Cross-site identifiers. No fingerprinting libraries, no third-party trackers in localStorage.

Cookies

We split cookies into two buckets at the banner:

• Essential — the three localStorage entries listed above. Always on; needed for the site to function. Strictly first-party.
• Analytics (optional) — Google Analytics, page-view counts and country-level aggregates only. You can decline this at the banner; the choice persists in trimview_consent.

Third parties the page loads from

The site is fully self-hosted. It does pull from a few external origins for assets and tooling:

• cdn.jsdelivr.net — the skinview3d library (3D viewer engine) and Three.js. No tracking, no cookies.
• fonts.googleapis.com + fonts.gstatic.com — the VT323 + Inter typefaces. Standard Google Fonts requests; covered by Google's font-API privacy notice.
• textures.minecraft.net and mcasset.cloud — community-mirrored Minecraft texture endpoints used by the 3D viewer when loading skins/armor. HTTP GETs for image files only.
• googletagmanager.com + google-analytics.com — only when you've accepted analytics cookies at the banner. Standard GA4 collection.

Server logs

The hosting nginx records standard access logs (IP, timestamp, URL, user-agent, referrer) and rotates them every 14 days. These are not joined with any analytics export and are used only for debugging and abuse mitigation.

Children's privacy

The site is designed for a general Minecraft audience including minors. Because we don't collect personal data, there's no special handling required under COPPA / GDPR-K. Parents can wipe the local state via the browser's Clear site data control at any time.

Your rights (GDPR / CCPA)

Since we don't store personal data on a server, most data-subject requests (deletion, portability, correction) resolve automatically: clear your localStorage and you've deleted everything we ever had about you.

If you've opted into analytics and want your past GA records dropped, email us (see Contact) and we'll issue the GA user-deletion API call.

Data breaches

There is no central database to breach. If the server is compromised the worst-case exposure is the static asset bundle (already public) and at most 14 days of nginx access logs.

Changes

If the site grows new surfaces that involve data collection (accounts, paid tiers, hosted galleries) this page will be updated and the Last updated date at the top will move. Continued use implies acceptance of the new terms.

See also: Terms of Service · Contact · Sitemap.