At KeepKnown, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our email filtering service.

1. Information We Collect

Account Information

When you create an account, we collect:

Your email address
Your name (if provided)
Payment information (processed securely by Stripe or PayPal)

Google Account Data

When you connect your Google account, we request access to:

Gmail API: To read incoming email headers (sender information only), create labels, and move emails to labels
Contacts API: To read your contact list and identify emails from known senders

How We Handle Your Email Data

We do not read, store, or access the content of your emails. Our service only processes email headers (sender address) to determine if an email is from a known contact.

Contact email addresses are not stored in plaintext. We store:

Per-user lookup token (HMAC-SHA256): Used to match an incoming sender to a known contact without storing the plaintext address
Encrypted copy (optional): Used only for user-facing debugging so you can view the actual address

2. How We Use Your Information

We use the information we collect to:

Provide and maintain the KeepKnown email filtering service
Filter emails from unknown senders to your KK:OUTSIDERS label
Process your subscription payments
Send you service-related communications
Improve and optimize our service
Respond to your support requests

3. Data Storage and Security

Encryption

All data transmitted between your browser and our servers is encrypted using TLS/SSL. Your Google OAuth credentials are encrypted using Django's signing framework before being stored.

Data Retention

Contact hashes: Retained while your account is active
Email processing logs: Retained for 30 days for debugging purposes
Account data: Retained until you delete your account

Where We Store Data

Our servers are located in the United States. By using KeepKnown, you consent to the transfer and processing of your data in the US.

4. Third-Party Services

We use the following third-party services:

Google APIs: Gmail and Contacts APIs to provide our core service
Stripe: Payment processing
PayPal: Alternative payment processing
Amazon SES: Transactional emails
Google Analytics: Anonymous usage analytics

Each of these services has their own privacy policy governing their use of your data.

5. Your Rights

You have the right to:

Access: Request a copy of the data we hold about you
Correction: Update or correct your account information
Deletion: Delete your account and all associated data
Revoke Access: Disconnect your Google account at any time from your dashboard
Data Portability: Request an export of your data

To exercise these rights, please contact us at hello@keepknown.com.

6. Google API Services User Data Policy

KeepKnown's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, we:

Only request access to data necessary to provide our service
Never use Google user data for advertising purposes
Never sell Google user data to third parties
Never use Google user data to determine creditworthiness or for lending purposes

7. Children's Privacy

KeepKnown is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

9. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Email: hello@keepknown.com

Privacy Policy