Your Privacy Matters

This Privacy Policy explains how Capsule Note ("we", "us", or "our") collects, uses, and protects your personal information when you use our time capsule letter service.

By using Capsule Note, you agree to the collection and use of information in accordance with this policy. We will not use or share your information with anyone except as described in this Privacy Policy.

We collect several types of information to provide and improve our service:

Account Information

• Email address (required for account creation and letter delivery)
• Name or display name (optional)
• Profile picture (optional, via OAuth providers)
• Timezone preference

Letter Content

• Letter text and rich content you create
• Scheduled delivery dates and times
• Recipient email addresses for letter delivery
• Note: All letter content is encrypted at rest

Usage Information

• Log data (IP address, browser type, pages visited)
• Device information (operating system, device type)
• Analytics data (feature usage, session duration)

We use the information we collect for the following purposes:

• To create and manage your account
• To deliver your letters at the scheduled time
• To send transactional emails (confirmations, delivery notifications)
• To improve our service and develop new features
• To respond to your support requests
• To detect and prevent fraud or abuse

We take the security of your data seriously:

• All letter content is encrypted using AES-256-GCM encryption
• Data is stored on secure, SOC 2 compliant infrastructure
• All data transmission uses TLS 1.3 encryption
• Regular security audits and penetration testing
• Strict access controls and employee training

We retain your data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we need to retain it for legal purposes.

We share your information only in the following circumstances:

Service Providers

We never sell, rent, or share your personal information with third parties for their marketing purposes.

We use cookies and similar technologies to improve your experience:

You have the following rights regarding your personal data:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate personal data
• Erasure: Request deletion of your personal data
• Portability: Export your data in a machine-readable format
• Objection: Object to certain processing of your data
• Restriction: Request limited processing of your data

For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR):

• We process data based on your consent or contract necessity
• You can withdraw consent at any time
• You can file a complaint with your local data protection authority
• We conduct Data Protection Impact Assessments when required

Our lawful bases for processing include: contract performance (delivering your letters), consent (marketing communications), and legitimate interests (improving our service, fraud prevention).

If you have questions about this Privacy Policy or want to exercise your rights, please contact our Data Protection Officer:

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

For significant changes, we will also notify you via email at least 30 days before the changes take effect.