Ki-Ki

Contents

1. Summary

Ki-Ki keeps tracking to a minimum. There are no marketing cookies, no analytics dashboards, and no attempts to build personality profiles of visitors. The site does use:

• Technical cookies created by Cloudflare where needed for security
• A custom fingerprinting layer that groups requests into visitors and sessions
• Webhook alerts that send suspicious patterns into a private Discord channel
• Cloudflare edge logs that record basic request information

All of this is used for security and reliability, not advertising.

2. Cookies used on this site

Ki-Ki does not set its own cookies for analytics, advertising, or user profiling.

Cloudflare, which sits in front of the site as a content delivery and security service, may set small technical cookies or similar tokens. These are used for tasks such as:

• Identifying traffic that has already passed security checks
• Routing requests efficiently through the network
• Protecting against common web attacks

These cookies are classed as strictly necessary for security and performance. They are not used by Ki-Ki to track behaviour or build profiles.

3. Security fingerprinting

Ki-Ki runs a lightweight fingerprinting layer through Cloudflare Workers. The aim is to tell normal visitors apart from automated tools, scrapers, and high risk traffic.

The fingerprinting logic records technical information such as:

• Pseudonymous identifiers such as a visitor ID, session ID, and fingerprint ID so related requests can be linked together without using names.
• Connection details such as IP address, country, and network (ASN).
• Browser and device information such as user agent, platform, and basic client capabilities.
• Request data such as the page or path requested and simple counters for how many times a session has viewed the site.

These signals help identify suspicious patterns such as repeated probes, automated scans, or traffic from known hosting providers that is behaving in unusual ways.

The fingerprinting layer is not used to identify named individuals or to personalise content. It is concerned with behaviour at the level of a browser or device, not with who you are in real life.

4. Webhook alerts and Discord logging

When the fingerprinting layer or Cloudflare rules detect certain patterns, a summary of the event is sent to a private Discord channel using a webhook. This makes it easier to monitor security events in real time.

A typical alert can include:

• The pseudonymous visitor, session, and fingerprint IDs
• IP address, country, and ASN
• The path that was requested
• The user agent string
• Simple counts such as session views or total views for that fingerprint

These alerts are used to review suspicious activity, tune firewall rules, and build an audit trail of attempts to probe or stress the site. They are not shared with third parties and are not used for advertising or user profiling.

5. Cloudflare logs

Cloudflare provides standard edge logs for traffic that passes through its network. These logs can include:

• IP address and country
• Requested path and HTTP method
• User agent and other request headers
• Information about any security actions taken, such as firewall blocks or challenges

These logs are kept by Cloudflare under their own retention rules and are used by Ki-Ki for troubleshooting and security analysis.

6. No marketing analytics or cross site tracking

Ki-Ki does not load Google Analytics, Meta or Facebook pixels, TikTok tracking, LinkedIn insight tags, Hotjar, or session replay scripts.

The site does not attempt to follow you once you leave. Data from Ki-Ki is not combined with data from other sites to build behavioural profiles.

7. Legal basis

Security fingerprinting, webhook alerts, and use of Cloudflare logs are carried out under the lawful basis of legitimate interests.

The interests in question are:

• Protecting the website and underlying infrastructure from abuse and attacks
• Detecting and investigating suspicious access patterns
• Maintaining service reliability for legitimate visitors and clients

Ki-Ki considers these interests to be reasonable and expects them to align with what visitors would anticipate when accessing a security focused service.

Where personal data is processed for security, it is not repurposed for advertising or unrelated profiling.

8. How long this data is kept

Data collected through cookies, fingerprinting, and logging is kept only for as long as it is useful for security and troubleshooting, then deleted or allowed to expire.

• Cloudflare logs are retained in line with Cloudflare’s standard retention periods unless specific entries need to be preserved for security or legal reasons.
• Discord webhook alerts are kept in the private channel for operational and audit purposes and may be removed or archived when they are no longer useful.
• Pseudonymous IDs exist to group related requests. They are not kept longer than the security value they provide.

For broader information on retention, see the main privacy policy.

9. Your choices and questions

You can browse Ki-Ki without accepting any marketing cookies because none are set. If you block all cookies and scripts in your browser, some security features may behave differently or present more challenges, but the core content should still load.

If you have questions or concerns about how Ki-Ki uses cookies, fingerprinting, or security telemetry, you can email [email protected] with the subject line “Cookies and analytics query”.

For details on your wider rights under data protection law, including access and objection rights, see the privacy policy.