Privacy Policy

Last updated: April 24, 2026

This Privacy Policy explains what HandsOn ("we", "us", "the service") collects when you use handsonassets.com, how we use it, and the choices you have. We try to keep this short and plain.

1. What we collect

  • Account info — name and email from your sign-in provider (Google, Discord, or magic-link email).
  • Profile info you give us — display name, units (imperial/metric), timezone, optional date of birth and phone number.
  • Asset data — anything you enter about your assets, work, parts, costs, photos, and documents.
  • AI conversations — questions you ask the assistant and its responses, retained so you can revisit past chats.
  • Usage data — basic request logs (page visited, response time, status) used to keep the service healthy.

2. How we use it

  • To run the service, sign you in, store your records, and show them back to you.
  • To send AI features the context they need (your asset specs, work history) so answers are personal to you.
  • To send transactional email — sign-in magic links, reminder notifications you've opted into, and account-related messages. We do not send marketing email.
  • To monitor for abuse, debug errors, and improve the service.

3. AI features

HandsOn uses Google's Gemini API to power its AI features. When you ask the assistant a question, the relevant context (the question itself, plus details about the asset you're asking about) is sent to Google for processing. Google's API terms govern that processing; per Google's policy, paid-tier API requests are not used to train their models. We log the request endpoint, model used, and approximate token count for billing and rate-limit purposes.

4. Sharing

We do not sell your personal information. We do not share it with advertisers. The only third parties that receive your data are:

  • Your sign-in provider (Google, Discord, or your email provider for magic links) — to authenticate you.
  • Google Gemini — when you use AI features, as described above.
  • Cloudflare — our CDN/proxy for the website itself.
  • Anyone you explicitly share an asset with (via the in-app sharing feature).

5. Affiliate links

Some product links in HandsOn (notably Amazon) are affiliate links — if you click them and buy something, we may earn a small commission at no extra cost to you. When you click an affiliate link we record the click (which link, when) so we can verify the affiliate program's reporting. We do not see what you ultimately buy.

6. Cookies and local storage

We use a session cookie to keep you signed in. We use your browser's local storage to remember preferences like theme (light/dark) and view settings. We do not use third-party tracking cookies or advertising pixels.

7. Data retention

Your data is retained as long as your account is active. AI conversations are kept for 30 days and then deleted automatically. Deleted assets are soft-deleted and recoverable from Settings; they are removed permanently when you delete your account.

8. Your choices

  • Export — download all your data as JSON from Settings.
  • Delete — delete your account and all associated data from Settings (requires typing "DELETE" to confirm).
  • Email — you can opt out of reminder notifications from Settings.

9. Security

The service runs on a server we control, behind Cloudflare, with TLS in transit. No system is perfectly secure, but we keep dependencies up to date, take regular database backups, and limit access to data to what's needed to operate the service.

10. Children

HandsOn is not directed to children under 13, and we do not knowingly collect data from anyone under 13. If you believe a child has signed up, contact us and we will delete the account.

11. Changes

If we make material changes to this policy, we'll update the "Last updated" date above and, where appropriate, notify you in the app or by email.

12. Contact

Questions or requests: [email protected]

← Back to home