1. Introduction
strm tech ("the Service") provides free tools for Twitch streamers (Chat Monitor, Profile Image Wall, Viewer Counter). This Privacy Policy explains how the Service collects, uses, and protects information.
2. Information We Collect
2.1 Automatically Collected Information
The Service may automatically collect the following information:
- Browser Information: Browser type, version, language settings
- Device Information: Device type, operating system
- Access Information: IP address, access date and time, pages viewed
- Cookie Information: See Cookie Policy below
2.2 Information Obtained via Twitch OAuth
The Service obtains and stores the following information through Twitch OAuth authentication:
- Twitch User Information: Twitch User ID, login name, display name, channel name
- Authentication Tokens: The access_token is stored in the user's browser localStorage. The refresh_token is encrypted using AES-GCM and stored in the server MySQL database
- User-Configured Settings: Tool-specific settings (notification sound settings, welcome messages, custom commands, timer messages, profile image wall settings, viewer counter settings, etc.) are stored in the server MySQL database
- Custom Sound Files (Chat Monitor): Custom notification sounds uploaded by the user are stored only in the local browser (IndexedDB) and are never transmitted to the server
The Service encrypts the Twitch refresh_token using AES-GCM and stores it in the server database. The decryption key is contained only in the URL hash portion (16 characters) and is never stored on the server. As a result, no third party — including the service operator — can decrypt the refresh_token without knowing the URL. Please bookmark your URL and do not share it with anyone.
3. How We Use Information
Collected information is used for the following purposes:
- Providing and improving the Service
- Enhancing user experience
- Analyzing Service usage
- Diagnosing and resolving technical issues
- Preventing fraudulent use
4. About Cookies
4.1 What are Cookies
Cookies are small text files that websites store in a user's browser. Cookies are used by websites to identify users and remember their preferences.
4.2 Cookies We Use
The Service uses the following cookies:
- Essential Cookies: Cookies necessary to provide basic Service functionality
- Functional Cookies: Used to remember the user's language setting (cm_lang). Shared across Chat Monitor / Profile Image Wall / Viewer Counter
- Analytics Cookies: Used by Google Tag Manager / Google Analytics to analyze Service usage
- Advertising Cookies: Used to display personalized ads (Google AdSense)
4.3 Managing Cookies
Users can disable or delete cookies through their browser settings. However, disabling cookies may prevent some Service features (such as language persistence) from working correctly.
5. About Google AdSense
The Service uses Google AdSense to deliver advertisements.
5.1 Google AdSense Information Collection
Google AdSense may collect the following information:
- Cookie information
- Ad impressions and clicks
- User interests and preferences
- Device and browser information
5.2 Personalized Advertising
Google uses cookies to display ads based on user interests. Users can opt out of personalized advertising through the Google Ads Settings page.
5.3 Google Privacy Policy
For more details about Google's privacy practices, please see the Google Privacy Policy.
6. Sharing Information with Third Parties
The Service does not share user personal information with third parties except in the following cases:
- When user consent is obtained
- When required by law
- When necessary to protect life, body, or property
- Sharing with advertising delivery partners such as Google AdSense (see above)
7. Information Security
The Service manages collected information appropriately and implements the following security measures to prevent unauthorized access, loss, destruction, alteration, and leakage. The Twitch refresh_token is encrypted using AES-GCM and stored in the database, while the decryption key is stored only in the URL hash portion rather than on the server. This design ensures that even the service operator cannot decrypt the stored token. The access_token is not stored on the server and resides only in the user's browser localStorage. Custom sound files in Chat Monitor are stored only in the user's local browser (IndexedDB) and are never transmitted to the server. All communications are encrypted via HTTPS.
8. Children's Personal Information
The Service does not intentionally collect personal information from children under 13. If we become aware that a child under 13 has provided personal information, we will promptly delete it.
9. External Links
The Service may contain links to external websites. This Privacy Policy does not apply to these external websites. Please check the privacy policies of respective websites for their privacy practices.
10. Changes to Privacy Policy
This Privacy Policy may be changed without notice due to legal changes or Service improvements. Important changes will be notified through the Service.
11. Contact Us
If you have questions or comments about this Privacy Policy, please contact us through:
12. Applicable Law
This Privacy Policy is governed by and interpreted under Japanese law. It also complies with the European General Data Protection Regulation (GDPR) and other applicable privacy laws.
Users in these regions have the right to access, correct, delete, restrict processing, and request data portability of their personal data. To exercise these rights, please contact us using the contact information above.
Last Updated: May 2026