The latest articles on DEV Community by Burak ELDEK (@burak_eldek_f6fdf098a7cd8). https://dev.to/burak_eldek_f6fdf098a7cd8 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3984170%2F44bf4b82-c7bd-4bd4-a42f-592196c7b277.jpg https://dev.to/burak_eldek_f6fdf098a7cd8 en Burak ELDEK Sun, 14 Jun 2026 17:05:26 +0000 https://dev.to/burak_eldek_f6fdf098a7cd8/built-50-privacy-first-web-tools-that-run-entirely-in-your-browser-no-servers-no-tracking-just-4pnb https://dev.to/burak_eldek_f6fdf098a7cd8/built-50-privacy-first-web-tools-that-run-entirely-in-your-browser-no-servers-no-tracking-just-4pnb <p>Most "free online tools" share a dirty secret: you upload your PDF, image, or text to their server. For a contract, an ID scan, or a private spreadsheet, that's a real privacy problem — your file now lives on someone else's machine.</p> <p>So I built <a href="//tooljar.app">Tooljar</a> — 50+ everyday utilities that do all their work inside your browser. No uploads, no accounts, no ads, and it keeps working offline. If a tool processes a file, that file never leaves your device.</p> <p>What's in it</p> <p>50 tools across PDF, image, text, developer, design and security categories. A few I lean on daily:</p> <ul> <li><p><a href="https://tooljar.app/tools/pdf-compress" rel="noopener noreferrer">PDF Compressor</a> and <a href="https://tooljar.app/tools/pdf-merger-splitter" rel="noopener noreferrer">Merger/Splitter</a> — re-compress and reorganize PDFs locally with pdf-lib + PDF.js.</p></li> <li><p><a href="https://tooljar.app/tools/image-converter" rel="noopener noreferrer">Image Converter</a> and <a href="https://tooljar.app/tools/exif-remover" rel="noopener noreferrer">EXIF Remover</a> — convert HEIC/PNG/WebP and strip GPS/camera metadata via Canvas.</p></li> <li><p><a href="https://tooljar.app/tools/json-editor" rel="noopener noreferrer">JSON Editor</a>, <a href="https://tooljar.app/tools/regex-tester" rel="noopener noreferrer">Regex Tester</a>, <a href="https://tooljar.app/tools/jwt-decoder" rel="noopener noreferrer">JWT Decoder</a> — the dev daily-drivers.</p></li> <li><p><a href="https://tooljar.app/tools/password-strength" rel="noopener noreferrer">Password Strength</a> — entropy + pattern detection, with an optional Have I Been Pwned check using k-anonymity (only the first 5 chars of the SHA-1 hash are ever sent).</p></li> </ul> <p>How it works</p> <p>The whole thing is a static site — no backend at all. Heavy lifting happens in the browser:</p> <ul> <li><p>PDFs: pdf-lib for writing, PDF.js for reading, run inside a Web Worker so the UI stays responsive on big files.</p></li> <li><p>Crypto/security: the native WebCrypto API for hashes, HMAC, JWT signature verification and the password tooling.</p></li> <li><p>Images: re-encoding (which conveniently drops EXIF), plus heic2any for iPhone HEIC.</p></li> <li><p>i18n: every tool ships in English, Turkish, German and Russian, statically rendered (204 pages) so each language is independently crawlable.</p></li> </ul> <p>Things I learned</p> <ul> <li><p>Web Workers are non-negotiable for file tools — a 50 MB PDF will jank the main thread otherwise.</p></li> <li><p>k-anonymity is underrated: you can check a password against breach databases without ever sending the password — hash it, send 5 characters of the prefix, match the suffix locally.</p></li> <li><p>Shipping 50 tools × 4 languages = 200+ static pages needs a real i18n build pipeline (and a per-page audit), or translations silently rot.</p></li> <li><p>Client-side is a feature, not a limitation — "your files never leave your device" turns out to be the most compelling thing about the whole project.</p></li> </ul> <p>Try it: <a href="//tooljar.app">tooljar.app</a>. It's free and there's nothing to sign up for. I'd love feedback on which tool to build next, or edge cases where one breaks.</p> privacy productivity showdev tooling