Privacy Policy | EnigmaCrypt

1. Zero-Knowledge Architecture

EnigmaCrypt is built on a zero-knowledge model. Your secrets are encrypted in your browser before they reach our servers. We never see, store, or have access to:

Your unlock passwords
Unencrypted secret content
Encryption keys derived from your password

We only store encrypted blobs and metadata (creation date, view count, expiration settings). Even we cannot decrypt your secrets without your password.

2. Information We Collect

Secrets: Encrypted content only. We cannot read it.

User accounts (if you sign up): Username, email (if provided), and a bcrypt-hashed password. We do not sell or share this data.

Usage data: We may collect anonymous usage statistics (e.g., page views) to improve the service. This does not include secret content or passwords.

3. Cookies and Session

We use session cookies for authenticated users. These are essential for the service to function. We do not use third-party tracking cookies for advertising.

4. Data Retention

Secrets expire according to the settings you choose (1 hour to 30 days, or never). Expired secrets are automatically deleted. You can also delete secrets manually.

5. Contact

For privacy-related questions: contact@websoon.com.ar