Your privacy is our priority. Learn how we protect and handle your data.
Last Updated: 30.09.2025
The principles that guide our privacy practices
At K9Crypt, we believe privacy is a fundamental human right. We've built our entire platform around the principle that your communications should be yours alone. This Privacy Policy explains what minimal information we collect, how we use it, and most importantly, what we DON'T do with your data.
We cannot access your encrypted messages or conversations.
We only store what's absolutely necessary: username and hashed password.
Our code is open-source and available for public security audits.
You own your data and can delete your account at any time.
Username: Required for account creation and identification within the platform.
Password: Stored using advanced cryptographic hashing (Argon2) for secure authentication.
Room Data: Encrypted room IDs, settings, and metadata necessary for platform functionality.
We do NOT collect: Real names, email addresses, phone numbers, location data, payment information, or any personally identifiable information beyond your username.
Authentication: To verify your identity when you sign in to K9Crypt.
Service Delivery: To provide access to encrypted chat rooms and messaging features.
Security: To protect your account from unauthorized access and maintain platform integrity.
Platform Improvement: Anonymous, aggregated statistics to improve service performance and reliability.
We NEVER sell, rent, or share your data with third parties for marketing or advertising purposes.
Zero-Knowledge Architecture: We implement zero-knowledge principles, meaning we cannot access your unencrypted messages.
End-to-End Encryption: All messages are encrypted on your device using our proprietary K9Crypt algorithm alongside Argon2 and SHA512.
Anonymous Storage: Only usernames and hashed passwords are stored on our servers. No personal data is retained.
Secure Infrastructure: Military-grade encryption standards protect all data in transit and at rest.
Self-Destructing Messages: Messages can be configured to automatically delete after a specified time period.
No Message Retention: We do not store message content on our servers after delivery and self-destruct timers.
Access: You can view your account information at any time through your profile settings.
Update: You have the right to update your username and password whenever you choose.
Delete: You can permanently delete your account and all associated data at any time.
Export: While we store minimal data, you can request a copy of any information we hold about you.
Opt-Out: You can discontinue using our service at any time without penalty or consequence.
Data Portability: Your encrypted room data can be accessed through your account while it remains active.
No Advertising Trackers: We do not use cookies or trackers for advertising purposes.
Essential Cookies Only: We use minimal session cookies required for authentication and service functionality.
No Third-Party Analytics: We do not integrate third-party analytics services that track your behavior.
Local Storage: Your browser may store authentication tokens locally for seamless sign-in experience.
You can clear browser data at any time to remove all locally stored information.
Open Source Libraries: We use open-source encryption libraries that are publicly audited and trusted by the security community.
No Data Sharing: We do not share your data with any third-party services, advertisers, or data brokers.
Infrastructure Providers: Our hosting infrastructure is secured with industry-standard protocols, but providers cannot access encrypted data.
External Links: Our platform may contain links to external websites. We are not responsible for their privacy practices.
GitHub Integration: Our source code is available on GitHub for transparency, but no user data is shared with GitHub.
Account Data: Your username and hashed password are retained only while your account is active.
Message Data: Messages are end-to-end encrypted and not stored on our servers. Self-destruct timers ensure automatic deletion.
Room Data: Room metadata is retained as long as the room exists and you remain a member.
Account Deletion: Upon account deletion, all associated data is permanently removed from our systems within 30 days.
No Backup Retention: Deleted data is not retained in backups beyond standard rotation periods (maximum 30 days).
Legal Compliance: We may retain minimal data if required by law, but we cannot provide access to encrypted messages.
Military-Grade Encryption: We use advanced encryption algorithms (K9Crypt, Argon2, SHA512) to protect all data.
Secure Development: Our codebase follows OWASP security standards and undergoes regular security audits.
Access Controls: Strict access controls limit who can interact with our infrastructure.
Regular Updates: We continuously update our security protocols to address emerging threats.
Incident Response: We have procedures in place to respond to any security incidents promptly and transparently.
Penetration Testing: We conduct regular security assessments to identify and fix vulnerabilities.
Age Requirement: K9Crypt is intended for users aged 13 and above.
Parental Consent: Users under 18 should obtain parental consent before using our services.
No Targeted Collection: We do not knowingly collect information from children under 13.
Immediate Deletion: If we discover that a user under 13 has created an account, we will delete it immediately.
Parents may contact us at privacy@k9crypt.xyz to request deletion of their child's account.
Global Access: K9Crypt is accessible worldwide, and your data may be processed in different jurisdictions.
Data Protection: We ensure all data transfers comply with applicable international data protection laws.
Encryption in Transit: All data is encrypted during transmission, regardless of geographic location.
Regional Compliance: We respect regional privacy regulations including GDPR, CCPA, and other applicable laws.
You can contact us to learn more about where your data is processed and stored.
Updates: We may update this Privacy Policy to reflect changes in our practices or legal requirements.
Notification: Material changes will be communicated through our platform and official channels.
Continued Use: Your continued use of K9Crypt after policy changes constitutes acceptance of the updated terms.
Review Date: This policy was last updated in 30.09.2025.
Version History: Previous versions of our Privacy Policy are available upon request.
Privacy Questions: For any questions about this Privacy Policy, contact us at privacy@k9crypt.xyz
Data Requests: To exercise your privacy rights or request data deletion, email privacy@k9crypt.xyz
Security Issues: Report security concerns to security@k9crypt.xyz
General Inquiries: For other questions, contact hi@k9crypt.xyz
Response Time: We aim to respond to all privacy-related inquiries within 48 hours.
We're here to help and answer any questions you may have
If you have any questions about this Privacy Policy, how we handle your data, or want to exercise your privacy rights, please don't hesitate to contact us. We're committed to transparency and will respond to all inquiries promptly.
By using K9Crypt, you agree to this Privacy Policy. For more information, see our Terms of Service or About Us