Privacy Policy
A policy designed to read like an operating standard, not a marketing layer.
Last updated: September 30, 2025
01
Information we collect
We keep account and service data narrow, purposeful, and connected to operation.
Username is required for account creation and identification inside the platform.
Passwords are stored using strong cryptographic hashing for authentication.
Encrypted room identifiers, settings, and operational metadata may be retained where product functionality requires them.
We do not intentionally collect real names, payment details, phone numbers, location history, or unnecessary personal profile data.
02
How we use information
Retained data supports authentication, service integrity, and abuse prevention.
Information is used to authenticate users, operate secure rooms, and maintain service integrity.
Limited operational data may be used to improve stability, performance, and abuse prevention.
We do not sell, rent, or share user information for advertising or marketing purposes.
03
Storage and security
System controls are designed to reduce exposure across storage, transport, and access.
K9Crypt follows a zero-knowledge direction so unencrypted messages are not available to us as part of normal operation.
Messages are protected through end-to-end encryption and secured in transit using industry-standard mechanisms.
Only minimal account and room-related data is retained where the platform requires it to function.
Security controls are designed to reduce exposure across storage, transport, and operational access.
04
Privacy rights
Users can review, update, and request deletion of retained information where applicable.
Users may review, update, or remove their account information subject to service requirements.
Account deletion requests result in associated data being removed in line with operational and legal obligations.
Where applicable, users may request access to the information we retain about them.
05
Cookies and local storage
We avoid unnecessary tracking and limit client-side storage to essential product behavior.
We avoid advertising trackers and unnecessary third-party analytics tooling.
Essential session and local storage behavior may be used for authentication and usability.
Users can clear browser data locally at any time.
06
Third-party services
External providers may support the product without receiving unnecessary user data.
Open-source libraries and infrastructure providers may support the service, but they are not intended to receive unnecessary user data.
External links are governed by the privacy practices of their respective destinations.
Our source code and public repositories may be hosted externally without exposing user conversation content.
07
Retention and deletion
Data is retained only as long as service operation, account lifecycle, and legal obligations require.
Account and room-related data is retained only as long as needed for the account lifecycle and service operation.
Message handling is designed to minimize retention of sensitive content.
When accounts are deleted, associated retained data is removed according to internal operational timelines and legal requirements.
08
Policy changes and contact
When privacy terms change in a material way, official channels are used to communicate it.
This policy may be updated to reflect legal, operational, or product changes.
Material updates may be communicated through the platform or official channels.
For privacy questions or requests, contact privacy@k9crypt.xyz. Security concerns can be sent to security@k9crypt.xyz.
Questions about retention, deletion, or access should not require interpretation.
If you need clarification about privacy handling, ask directly.