Privacy Policy

Last Updated: February 1, 2026

Critical Notice: MCPinator is a TESTING TOOL ONLY. Do NOT use this Service with production data, confidential information, or any data that requires privacy guarantees.

1. Introduction

This Privacy Policy describes how Garage274, LLC ("we," "us," or "our") handles information in connection with MCPinator ("the Service"). By using the Service, you acknowledge and accept this Privacy Policy.

2. No Privacy Guarantees

Important Disclaimer

WE PROVIDE NO GUARANTEES OF PRIVACY OR DATA SECURITY. This Service is intended for testing and development purposes only. You should have NO EXPECTATION OF PRIVACY when using MCPinator.

3. Information We Collect

3.1 Account Information

When you create an account, we collect:

  • Username
  • Email address
  • Password (stored as a cryptographic hash)

3.2 MCP Server Configurations

When you save MCP server configurations, we store:

  • Server names and URLs
  • API keys and credentials (stored in plaintext in the database)
  • Server descriptions
  • Connection history and timestamps

3.3 Usage Data

We may collect:

  • Commands you execute through the terminal
  • MCP requests and responses
  • Session information
  • Error logs and diagnostic information

4. How We Store Your Information

Your information is stored in a local SQLite database file on the server. This database:

  • Is NOT encrypted at rest
  • May be accessible to anyone with server access
  • May be included in backups without special protection
  • Stores API keys and credentials in plaintext

5. Data Security

We make NO GUARANTEES about the security of your data. This includes but is not limited to:

  • Protection against unauthorized access
  • Encryption in transit or at rest
  • Secure storage of API keys or credentials
  • Protection against data breaches
  • Backup or disaster recovery

6. How We Use Your Information

We use your information to:

  • Provide and maintain the Service
  • Authenticate your identity
  • Store your MCP server configurations
  • Connect to MCP servers on your behalf using your stored credentials
  • Improve and debug the Service

7. Data Sharing and Sale

We do NOT sell your data to third parties. However:

  • Your data may be visible to server administrators
  • Data may be included in system backups
  • Data may be logged for debugging purposes
  • We cannot guarantee that your data won't be accessed by unauthorized parties
  • In the event of a security breach, we provide no guarantees of notification

8. Third-Party MCP Servers

When you connect to MCP servers through our Service:

  • We act as a proxy between you and the MCP server
  • We may log or store requests and responses
  • The MCP server operators may collect their own data
  • We are NOT responsible for the privacy practices of third-party MCP servers
  • Your API keys are transmitted to these servers in accordance with MCP protocol

9. API Keys and Credentials

Critical Security Notice

API keys and credentials you store in MCPinator:

  • Are stored in PLAINTEXT in the database
  • Are NOT encrypted
  • May be visible to anyone with database access
  • May be logged in server logs
  • May be compromised in a security breach

DO NOT store production API keys or credentials in this Service.

10. Data Retention

We retain your data for as long as your account exists. However:

  • We provide no guarantees of data persistence
  • Data may be lost due to hardware failure, software bugs, or other issues
  • Deleted data may persist in backups or logs
  • We do not guarantee secure deletion of data

11. Your Rights

You may:

  • Access your account information
  • Update or delete saved server configurations
  • Delete your account (which may not remove all traces of your data)

However, we cannot guarantee:

  • Complete removal of all your data from our systems
  • That your data hasn't already been compromised
  • That deleted data is securely erased

12. Children's Privacy

MCPinator is not intended for use by individuals under 18 years of age. We do not knowingly collect information from minors.

13. International Users

MCPinator is operated from the United States. If you are accessing the Service from outside the United States, your information may be transferred to, stored, and processed in the United States. We make no guarantees of compliance with any specific data protection regulations including GDPR, CCPA, or other privacy laws.

14. Testing Environment

MCPinator is explicitly designed for TESTING PURPOSES ONLY. It is NOT suitable for:

  • Production environments
  • Sensitive or confidential data
  • Personal information subject to privacy regulations
  • Financial data
  • Health information
  • Any data requiring security or privacy guarantees

15. No Liability

We accept NO LIABILITY for:

  • Data breaches or unauthorized access
  • Loss, corruption, or exposure of your data
  • Misuse of your API keys or credentials
  • Privacy violations
  • Compliance failures with privacy regulations

16. Changes to This Policy

We may update this Privacy Policy at any time without notice. Continued use of the Service constitutes acceptance of any changes.

17. Contact

For questions about this Privacy Policy, please contact Garage274, LLC. However, we provide no guarantees of response or remediation for privacy concerns.

Summary

Use MCPinator only with test data that you don't care about.

  • We provide NO privacy guarantees
  • We provide NO security guarantees
  • We do NOT sell your data, but cannot guarantee its protection
  • API keys and credentials are stored UNENCRYPTED
  • This is a TESTING TOOL, not a production service
Back to MCPinator