Skip to content
husk
GitHub ↗ Get Husk
§ legal

Privacy Policy

Effective: 2026-04-18

Last updated: 2026-04-18

Mataki Labs LLC (“Husk,” “we,” “us,” or “our”), a Wyoming limited liability company, operates the husk.sh website, the install endpoint at install.husk.sh, and related infrastructure (collectively, the “Services”). This Privacy Policy explains how we collect, use, disclose, and protect information when you use our Services.

By using our Services, you agree to the collection and use of information as described in this policy.

Husk is an open-source language with no user accounts, no hosted console, and no analytics tracking in v1. We collect very little personal information. This policy describes exactly what we do collect and why.

Information We Collect

Information You Provide

We do not require account registration or login to use the Services. We may collect the following information voluntarily provided:

  • Communications: Any information you include when you contact us via email or GitHub issues, including your name, email address, and message content.

Information Collected Automatically

When you access the husk.sh website or the install endpoint, our infrastructure automatically collects standard server access logs:

  • Server logs: IP address, browser type and version, operating system, referring URL, pages or endpoints accessed, timestamps, and HTTP status codes.

These logs are generated by the web server and hosting infrastructure (Sandbar) and, where applicable, by Cloudflare if used as a CDN intermediary. They are used solely for security, abuse prevention, and operational reliability.

What we do not collect: We do not use third-party analytics platforms, advertising trackers, social media pixels, or cross-site tracking cookies in v1. We do not collect device fingerprints, behavioral data, or usage metrics beyond the server log data described above.

How We Use Information

We use the information we collect to:

  • Operate the Services: Serve the marketing website, the install script, and documentation reliably.
  • Ensure security: Detect and prevent abuse, denial-of-service attacks, and unauthorized access to the Services.
  • Respond to communications: Reply to support requests and questions you send us.
  • Comply with legal obligations: Respond to lawful requests from government authorities and comply with applicable laws.

We do not sell your personal information to third parties.

Install Endpoint

The install endpoint at install.husk.sh serves a static shell script. When you run the install script, your system makes an outbound HTTPS request to GitHub Releases to download the Husk binary. That request is handled directly by GitHub under their own privacy policy and terms of service. We do not receive or log the content of that GitHub request.

Information Sharing and Disclosure

We share information only in the following circumstances:

Service Providers

We use third-party service providers to help operate our Services, including:

  • GitHub for source code hosting, release artifact hosting, and (in the future) the module registry
  • Sandbar for website hosting and infrastructure
  • Cloudflare (if applicable) for CDN and DDoS mitigation

These providers access information only as necessary to perform their services and are bound by their respective privacy policies and contractual obligations.

We may disclose information if required to do so by law or in response to valid legal process, including subpoenas, court orders, or government requests. We will notify you of such requests when legally permitted to do so.

Business Transfers

In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will provide notice before your information becomes subject to a different privacy policy.

Data Retention

  • Server logs are retained for 30 days for security and operational purposes, after which they are deleted.
  • Email communications are retained for as long as necessary to respond to your inquiry and for a reasonable period thereafter for recordkeeping.
  • Billing records (if any arise in the future) will be retained as required by applicable tax and accounting regulations.

Data Security

We implement reasonable security measures to protect the limited information we collect:

  • Encryption in transit: All communications use TLS. Connections over plain HTTP are redirected to HTTPS.
  • Access controls: Access to server logs and infrastructure is restricted to authorized personnel.
  • Minimal collection: Because we collect very little personal data, our attack surface for data exposure is correspondingly limited.

No method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Cookies

The husk.sh website does not use cookies beyond any strictly necessary session or security cookies that may be set by our hosting infrastructure. We do not use cookies for advertising, behavioral tracking, or analytics. We do not use third-party tracking cookies.

Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Delete your personal information (subject to legal retention requirements)
  • Object to or restrict certain processing of your information

To exercise any of these rights, contact us at privacy@husk.sh. We will respond to your request within 30 days. Because we collect minimal data (primarily server access logs), many requests can be fulfilled promptly.

California residents: Under the California Consumer Privacy Act (CCPA), you have the right to know what personal information we collect, to request deletion, and to opt out of sale. We do not sell personal information.

EEA and UK residents: Our legal basis for processing server log data is our legitimate interest in operating secure and reliable infrastructure. You have the right to lodge a complaint with your local supervisory authority.

Children’s Privacy

Our Services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

International Data Transfers

Mataki Labs LLC is based in the State of Wyoming, United States. If you access our Services from outside the United States, your information may be transferred to and processed in the United States. By using our Services, you consent to such transfer and processing.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date.

Governing Law

This Privacy Policy is governed by the laws of the State of Wyoming, United States, without regard to its conflict of law provisions.

Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Mataki Labs LLC State of Wyoming Email: privacy@husk.sh