1. Information We Collect

We believe in data minimization. The only information we collect is what's absolutely necessary to provide our service:

• Account Information: Email address and encrypted password
• Seed Phrase: Your recovery phrase (encrypted and securely stored)
• Technical Data: Basic server logs required for service operation (IP addresses, timestamps)
• Encrypted Content: Your emails and attachments (which we cannot read due to end-to-end encryption)

2. Zero-Logs Policy

We maintain a strict zero-logs policy:

• We do not track your email usage, reading patterns, or communication habits
• We do not store metadata about your messages beyond technical requirements
• We do not create profiles based on your email content or contacts
• We do not collect location data or device fingerprints
• We do not share any user data with third parties

3. Encryption & Data Protection

Your data is protected by multiple layers of encryption:

• End-to-End Encryption: Your messages are encrypted on your device and can only be decrypted by the intended recipient
• Zero-Access Architecture: We cannot access your encrypted content, even if we wanted to
• At-Rest Encryption: All stored data is encrypted using industry-standard algorithms
• In-Transit Protection: All data transmission uses TLS 1.3 encryption

4. How We Use Your Information

The limited information we collect is used solely for:

• Providing and maintaining the email service
• Account authentication and security
• Account recovery using your seed phrase
• Technical support when requested
• Service security and abuse prevention

5. Data Retention

We retain data only as long as necessary for service operation:

• Active accounts: Data is retained while the account is active
• Deleted accounts: All user data is permanently deleted within 30 days
• Self-destructing messages: Automatically deleted after the specified time period
• Technical logs: Rotated and deleted within 24-48 hours

6. Third-Party Services

We do not integrate with third-party analytics or advertising services. Our infrastructure is designed to minimize external dependencies and maximize your privacy.

7. Your Rights

You have the right to:

• Access any personal data we have about you
• Correct inaccurate personal data
• Delete your personal data (right to be forgotten)
• Export your data in a standard format
• Withdraw consent for data processing

8. International Data Transfers

Your data may be processed in countries other than your own. However, regardless of where your data is processed, it remains protected by the same high-security standards and encryption protocols.

9. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected such information, we will delete it immediately.

10. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or for legal compliance. We will notify users of significant changes via email or through the service.

11. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us through our secure channels. We are committed to addressing privacy concerns promptly and transparently.