NiceLegal Stuff
Last updated: March 2026
π― TL;DR: We DO NOT store user data. Period.
What NiceLogin does
NiceLogin is an authentication gateway. When a user logs in via a provider (Google, GitHub, Apple, etc.), we receive the provider's token, generate a signed JWT with claims, and return it to your application. That's it. There is no database on our side. No user table. No persisted session.
Data that passes through us (and leaves)
During the authentication flow, the following data temporarily transits through our infrastructure:
- β User email (from the provider)
- β User name (from the provider)
- β Avatar/photo (from the provider)
- β Provider ID (e.g., Google sub)
This data is included in the JWT we return to you and discarded immediately. We don't cache, don't log, don't persist. RAM is cleared after each request.
What we DON'T do
- β We don't create user profiles
- β We don't track behavior
- β We don't sell data (we have no data to sell)
- β We don't use tracking cookies
- β We don't integrate with ad networks
- β We don't store provider tokens
Data we store (about YOU, the developer)
In the portal (portal.nicelogin.com), we only store your application's configuration: client IDs and secrets from the providers you configured, your NiceLogin API keys, and authorized domains. This is necessary to route login requests.
Infrastructure
We run on Rust in serverless edge functions. No disks, no session databases, no state between requests. Each request is processed and discarded.