Privacy Policy - Kyber Club | Secure Data Handling

Your Privacy Matters at Kyber Club

At Kyber Club, we are committed to protecting your privacy. Our approach is simple, transparent, and designed to comply with GDPR principles, ensuring no unnecessary data collection and robust security (GDPR Article 5 and Article 32).

No Personal Data Collection

We do not collect or store any personal information about you. Your interaction with our services remains completely anonymous.

Strict No-Tracking Policy

We ensure your online activities are not tracked. This means:

No ad trackers or third-party cookies.
No canvas fingerprinting, session recording, pixels, or keystroke capture.

In-Memory Data Processing for Enhanced Security

All data processing, including calculations involving cryptographic keys and uploaded data, occurs directly within your browser's memory. Unlike server-side processing, which may store data temporarily on remote systems, our approach ensures maximum privacy. This guarantees:

Temporary storage of uploaded files during the upload process, deleted within seconds of completion.
Instant erasure of keys and data upon leaving or refreshing the page.
No storage or logging of data on our servers, keeping your information out of reach from potential breaches.

User Responsibility for Key Management

We recommend downloading and securely storing any encryption keys you generate. Once you leave the page, these keys are irretrievably lost. This empowers you with full control over your cryptographic assets.

IP Address Logging and Security Measures

We do not log IP addresses of our website visitors and users under normal circumstances. However, if you attempt to scan, hack, or engage in Denial of Service (DoS) or Distributed Denial of Service (DDoS) attacks, or any other malicious activities against our website, your IP address will be logged. This is done to protect the security of our service, as permitted under GDPR Article 6(1)(f) (legitimate interests).

Retention: Logged IP addresses are retained only for as long as necessary to address the security threat, typically no longer than 30 days, after which they are deleted.

We may temporarily or permanently block IP addresses we consider malicious. In serious cases, we reserve the right to contact your cloud service operator, mobile service provider, or law enforcement authorities in the UK or your jurisdiction. If your IP is logged, you have the right to request access or erasure under GDPR Article 15 and Article 17, subject to legal limitations. Contact us at our designated privacy contact point (details to be provided as needed) for such requests.

Kyber Club's Commitment to Data Privacy

We uphold the highest standards of privacy and security. See our Cookie Policy for details on our essential security cookie.