Privacy Policy
Encryptiest, Inc. (the “Company”) is committed to maintaining robust privacy protections for its users. Our Privacy Policy (“Privacy Policy”) is designed to help you understand how we collect, use and safeguard the information you provide to us and to assist you in making informed decisions when using our Service.
For purposes of this Agreement, “Site” refers to either of the Company’s websites, which can be accessed at SecureAccessForEveryonePortal.com and Encryptiest.com.
“Service” refers to the Company’s services accessed via the Site, in which users can store and manage their account credentials for our service and the services of other third-party providers online.
The terms “we,” “us,” and “our” refer to the Company.
“You” refers to you, as a user of our Site or our Service.
By accessing our Site or our Service, you accept our Privacy Policy and Terms of Use (found here: Terms of Use), and you consent to our collection, storage, use and disclosure of your Personal Information as described in this Privacy Policy.
I. Information We Collect
We collect “Non-Personal Information” and “Personal Information.” Non-Personal Information includes information that cannot be used to personally identify you, such as anonymous usage data, general demographic information we may collect, referring/exit pages and URLs, platform types, preferences you submit and preferences that are generated based on the data you submit and number of clicks. Personal Information includes your email, usernames for other third-parties’ services, and passwords for other third-parties’ services, which you submit to us through the registration process at the Site.
a. Information collected via Technology
To activate the Service you do not need to submit any Personal Information other than your email address. To use the Service thereafter, you do not need to submit further Personal Information. However, in an effort to improve the quality of the Service, we track information provided to us by your browser or by our software application when you view or use the Service, such as the website you came from (known as the “referring URL”), the type of browser you use, the device from which you connected to the Service, the time and date of access, and other information that does not personally identify you. We track this information using cookies, or small text files which include an anonymous unique identifier. Cookies are sent to a user’s browser from our servers and are stored on the user’s computer hard drive. Sending a cookie to a user’s browser enables us to collect Non-Personal information about that user and keep a record of the user’s preferences when utilizing our services, both on an individual and aggregate basis. For example, the Company may use cookies to collect the following information:
- Online Browsing Practices – To advise user safety
The Company may use both persistent and session cookies; persistent cookies remain on your computer after you close your session and until you delete them, while session cookies expire when you close your browser. For example, we store a persistent cookie to track browsing practices and transfer browsing sessions.
b. Information you provide us by registering for an account
In addition to the information provided automatically by your browser when you visit the Site, to become a subscriber to the Service you will need to create a personal profile. You can create a profile by registering with the Service and entering your email address, and creating a user name and a password. By registering, you are authorizing us to collect, store and use your email address in accordance with this Privacy Policy.
c. Children’s Privacy
The Site and the Service are not directed to anyone under the age of 13. The Site does not knowingly collect or solicit information from anyone under the age of 13, or allow anyone under the age of 13 to sign up for the Service. In the event that we learn that we have gathered personal information from anyone under the age of 13 without the consent of a parent or guardian, we will delete that information as soon as possible. If you believe we have collected such information, please contact us at team@encryptiest.com.
II. How We Use and Share Information
Personal Information
Except as otherwise stated in this Privacy Policy, we do not sell, trade, rent or otherwise share for marketing purposes your Personal Information with third parties without your consent. We do share Personal Information with vendors who are performing services for the Company, such as the servers for our email communications who are provided access to user’s email address for purposes of sending emails from us. Those vendors use your Personal Information only at our direction and in accordance with our Privacy Policy.
In general, the Personal Information you provide to us is used to help us communicate with you. For example, we use Personal Information to contact users in response to questions, solicit feedback from users, provide technical support, and inform users about promotional offers.
We may share Personal Information with outside parties if we have a good-faith belief that access, use, preservation or disclosure of the information is reasonably necessary to meet any applicable legal process or enforceable governmental request; to enforce applicable Terms of Service, including investigation of potential violations; address fraud, security or technical concerns; or to protect against harm to the rights, property, or safety of our users or the public as required or permitted by law.
Non-Personal Information
In general, we use Non-Personal Information to help us improve the Service and customize the user experience. We also aggregate Non-Personal Information in order to track trends and analyze use patterns on the Site. This Privacy Policy does not limit in any way our use or disclosure of Non-Personal Information and we reserve the right to use and disclose such Non-Personal Information to our partners, advertisers and other third parties at our discretion.
In the event we undergo a business transaction such as a merger, acquisition by another company, or sale of all or a portion of our assets, your Personal Information may be among the assets transferred. You acknowledge and consent that such transfers may occur and are permitted by this Privacy Policy, and that any acquirer of our assets may continue to process your Personal Information as set forth in this Privacy Policy. If our information practices change at any time in the future, we will post the policy changes to the Site so that you may opt out of the new information practices. We suggest that you check the Site periodically if you are concerned about how your information is used.
III. How We Protect Information
We implement security measures designed to protect your information from unauthorized access. Your account is protected by your account password and we urge you to take steps to keep your personal information safe by not disclosing your password and by logging out of your account after each use. We further protect your information from potential security breaches by implementing certain technological security measures including encryption, firewalls and secure socket layer technology. However, these measures do not guarantee that your information will not be accessed, disclosed, altered or destroyed by breach of such firewalls and secure server software. By using our Service, you acknowledge that you understand and agree to assume these risks.
IV. Your Rights Regarding the Use of Your Personal Information
You have the right at any time to prevent us from contacting you for marketing purposes. When we send a promotional communication to a user, the user can opt out of further promotional communication by following the unsubscribe instructions provided in each promotional e-mail. You can also indicate that you do not wish to receive marketing communications from us in the Unsubscribe footer in every email or the Unsubscribe page of the Site. Please note that notwithstanding the promotional preferences you indicate by either unsubscribing or opting out in the https://secureaccessforeveryoneportal.com/unsubscribe page of the Site, we may continue to send you administrative emails including, for example, periodic updates to our Privacy Policy.
V. Links to Other Websites
As part of the Service, we may provide links to or compatibility with other websites or applications. However, we are not responsible for the privacy practices employed by those websites or the information or content they contain. This Privacy Policy applies solely to information collected by us through the Site and the Service. Therefore, this Privacy Policy does not apply to your use of a third party website accessed by selecting a link on our Site or via our Service. To the extent that you access or use the Service through or on another website or application, then the privacy policy of that other website or application will apply to your access or use of that site or application. We encourage our users to read the privacy statements of other websites before proceeding to use them.
VI. The SAFElogin Browser Extension
SAFElogin is the companion browser extension for SAFE Portal. It signs you in to the services on your SAFE Portal dashboard from a standard browser (Chrome, Edge, Firefox, or Safari). This section describes exactly what it accesses and how it handles your data.
a. What the extension can access
- The sites you log into. To fill and submit a login form, the extension needs permission to run on that service’s website. It requests this access one site at a time, the first time you use that service — not for all websites up front. You can review and revoke these permissions in your browser’s extension settings at any time.
- A site you choose to record (custom logins). If you record your own login for a site that is not in the built-in catalog, the extension asks for permission for that one site at the moment you start recording, and records only the steps you take to sign in, only on that site, until you stop.
- Your SAFE Portal dashboard. The extension runs on the SAFE Portal website to detect that it is installed and to receive your login requests.
b. Your SAFE Portal password
- You type your SAFE Portal password into a window that belongs to the extension — never into a web page. It is used only to derive the encryption keys for your stored credentials.
- It is never stored and never transmitted anywhere. It is discarded from memory immediately after your keys are derived.
c. Your service credentials
- Your usernames and passwords for third-party services are encrypted on your device with a key derived from your SAFE Portal password. Only the encrypted form ever leaves your device, and it is sent only to your own SAFE Portal account — never to us as plaintext, never to any third party.
- The keys derived from your password are held only in volatile session memory. They are cleared automatically when your computer locks or goes idle, and when the browser closes. They are never written to disk.
- The web pages you visit — including your SAFE Portal dashboard — never receive your password or any decrypted credential; the extension handles decryption in its own background context and types the credential directly into the login form.
d. Maintenance diagnostics (failed logins)
- When an automated login fails (it opens the login tab but does not reach a signed-in state), the extension sends a diagnostic report to your SAFE Portal administrators so the integration can be fixed. The report contains the service name, a failure category and reason, the login host, your browser type, your SAFE Portal username, and a short service-worker log excerpt captured during that attempt.
- This diagnostic never contains your credentials. The log excerpt may contain technical details of the target site (such as form-field names or URLs) but not the values you typed.
- Successful logins generate no report.
e. What the extension does not do
- It does not sell or share your data with third parties.
- It does not use your data for advertising or profiling.
- It does not send any data to servers other than your own SAFE Portal server.
- It does not read your browsing history or the contents of sites other than the ones you explicitly authorize it to log into or record.
f. Permissions and why they are needed
- Fill login forms — to enter and submit your credentials on the service’s page.
- Storage — to cache your derived encryption keys for the session and to store your settings.
- Idle detection — to clear cached keys when your computer locks or goes idle.
- Access to specific sites — to fill your credentials on the sites you log into; requested per site, only when needed.
- Access to a site you record — to record a custom login on a site you choose.
g. Your control
- Grant or revoke the extension’s access to any site in your browser’s extension settings.
- Remove your stored credentials for any service from your SAFE Portal dashboard.
- Uninstalling the extension removes all of its locally cached data.
VII. Changes to Our Privacy Policy
The Company reserves the right to change this policy and our Terms of Service at any time. We will notify you of significant changes to our Privacy Policy by sending a notice to the primary email address specified in your account or placing a prominent notice on our site. Significant changes will go into effect 30 days following such notification. Non-material changes or clarifications will take effect immediately. You should periodically check the Site and this privacy page for updates.
VIII. Contact Us
If you have any questions regarding this Privacy Policy or the practices of this Site, please contact us by sending an email to team@encryptiest.com.