EncryzPrivacy Policy

Privacy Policy

Last updated: July 9, 2025

Introduction

At Encryz, we believe that privacy is a fundamental human right. This Privacy Policy explains how we collect, use, and protect your information when you use our secure document encryption service. Our commitment to privacy is at the core of everything we do.

We operate on a zero-knowledge architecture, which means we are designed to have minimal access to your personal information. This policy outlines our practices and your rights regarding your data.

Information We Collect

Information You Provide

  • Files for encryption/decryption: We temporarily process your files to perform encryption or decryption operations. Files are deleted immediately after processing.
  • Passwords: Your password is used temporarily to create encryption keys and is never stored on our servers.
  • Contact information: If you contact us for support, we may collect your email address and other information you provide.

Information We Automatically Collect

  • Usage data: We collect basic usage statistics to improve our service (e.g., number of files processed, error rates).
  • Technical information: Browser type, operating system, IP address (for security and abuse prevention).
  • Cookies: Essential cookies for service functionality and security.

Information We Do NOT Collect

  • File content: We cannot read or analyze the content of your encrypted files.
  • Passwords: Your passwords are never stored or transmitted to our servers.
  • Personal identifiers: We do not collect names, addresses, or other personal information unless you contact us.
  • Metadata: We do not collect or store file metadata beyond what's necessary for processing.

How We Use Your Information

Primary Uses

  • Service provision: To provide encryption and decryption services
  • Security: To prevent abuse, fraud, and security threats
  • Support: To respond to your inquiries and provide customer support
  • Improvement: To improve our service and develop new features

Legal Basis for Processing

  • Contract: Processing is necessary to provide our services
  • Legitimate interest: To improve our service and prevent abuse
  • Consent: For optional features and communications
  • Legal obligation: To comply with applicable laws and regulations

Information Sharing and Disclosure

We are committed to protecting your privacy and do not sell, trade, or otherwise transfer your personal information to third parties, except in the following limited circumstances:

We Do NOT Share:

  • • Your encrypted files or their contents
  • • Your passwords or encryption keys
  • • Your personal information for marketing purposes
  • • Your data with advertisers or data brokers

Limited Sharing (When Required):

  • Legal requirements: When required by law or court order
  • Security threats: To prevent fraud or security threats
  • Service providers: With trusted third-party service providers (hosting, analytics)
  • Business transfers: In case of merger, acquisition, or sale of assets

Data Security

We implement comprehensive security measures to protect your information:

Technical Security

  • • Military-grade AES-256-CBC encryption
  • • PBKDF2 key derivation (100,000 iterations)
  • • Unique salts for each file
  • • HTTPS/TLS encryption for all data transmission
  • • Secure server infrastructure
  • • Regular security audits and updates

Operational Security

  • • Zero-knowledge architecture
  • • Immediate file deletion after processing
  • • No password storage on servers
  • • Limited data retention policies
  • • Employee security training
  • • Incident response procedures

Data Retention

We follow strict data retention policies to minimize the data we hold:

Immediate Deletion

  • • Encrypted/decrypted files: Immediately after processing
  • • Passwords: Never stored
  • • Temporary processing data: Within minutes

Limited Retention

  • • Logs: 30 days (for security and debugging)
  • • Support communications: 2 years
  • • Analytics data: 1 year (anonymized)
  • • Legal compliance: As required by law

Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

Access & Control

  • • Right to access your data
  • • Right to correct inaccurate data
  • • Right to delete your data
  • • Right to data portability

Processing Control

  • • Right to restrict processing
  • • Right to object to processing
  • • Right to withdraw consent
  • • Right to lodge complaints

To exercise these rights, please contact us at privacy@encryz.online. We will respond to your request within 30 days.

Cookies and Tracking

We use cookies and similar technologies to provide and improve our service:

Essential Cookies

  • • Security and authentication
  • • Service functionality
  • • Session management
  • • CSRF protection

Analytics Cookies

  • • Service improvement
  • • Performance monitoring
  • • Error tracking
  • • Usage statistics

You can control cookies through your browser settings. However, disabling essential cookies may affect service functionality.

Third-Party Services

We use a limited number of third-party services to support our operations:

Hosting and Infrastructure

Our service is hosted on secure cloud infrastructure. Our hosting providers have access to server logs but cannot access your encrypted files or personal data.

Analytics and Monitoring

We use analytics services to monitor service performance and improve user experience. These services collect anonymized usage data and do not have access to your files or personal information.

Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

International Data Transfers

Our service is hosted in secure data centers. Your data may be processed in countries other than your own. We ensure that any international transfers comply with applicable data protection laws and implement appropriate safeguards to protect your information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by:

  • • Posting the updated policy on our website
  • • Updating the "Last updated" date at the top of this policy
  • • Sending email notifications for significant changes

Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Email: privacy@encryz.online

Security issues: security@encryz.online

General support: support@encryz.online