Privacy Policy
Short version: This website collects only your email address if you join the waitlist. The CryptaVitae application stores all records locally on your machine and sends nothing to us. We have no access to your professional records.
1. Who We Are
Crypta Vitae is a software product operated as a sole trader business based in the United Kingdom. For data protection enquiries, contact us at support@cryptavitae.com.
2. What Data This Website Collects
This website is a static marketing page hosted on Netlify. The only personal data we collect directly is your email address, if you choose to submit it via the waitlist form.
| Data | Purpose | Legal Basis | Retention |
|---|---|---|---|
| Email address (waitlist) | To notify you when CryptaVitae is available for download | Consent (Article 6(1)(a) GDPR) | Until product launch or until you request deletion — whichever comes first |
| Analytics data (GA4) | Aggregate website usage statistics (page views, traffic source). IP addresses are anonymised before processing. | Legitimate interest (Article 6(1)(f) GDPR) — analytics do not identify individuals | 26 months (Google Analytics default retention) |
We do not collect names, phone numbers, payment details, or any other personal data through this website.
3. The CryptaVitae Application
The CryptaVitae desktop application is a local-first application that runs entirely on your own machine. It does not transmit your professional records, notes, case files, or attachments to any server operated by Crypta Vitae or any third party.
The only network request made by the application is an RFC 3161 trusted timestamp request sent to an independent timestamp authority (FreeTSA.org) when a new record is saved. This request contains a 32-byte SHA-256 fingerprint of the record — not the record content itself. It is mathematically impossible to reconstruct any text, name, or identifying information from this fingerprint. The timestamp authority receives 32 bytes and nothing else. Your records never leave your device.
Crypta Vitae has no access to any data stored inside your vault. Your vault is encrypted with a key derived from your PIN, which never leaves your device.
4. Third-Party Services Used by This Website
| Service | Purpose | Privacy Policy |
|---|---|---|
| Netlify | Website hosting and waitlist form processing. Netlify stores submitted email addresses on our behalf. | netlify.com/privacy |
| Google Analytics 4 | Aggregate website usage analytics. IP anonymisation is enabled. No advertising features are used. | policies.google.com/privacy |
| Google Fonts | Typeface delivery. Google may log the request IP as part of serving fonts; no personal data is stored by Crypta Vitae as a result. | policies.google.com/privacy |
| Cloudflare (via Netlify) | DDoS protection and bot filtering on the hosting layer. | cloudflare.com/privacypolicy |
5. How We Use Your Email Address
If you submit your email address through the waitlist form, we will use it only to:
- Notify you when CryptaVitae is available for download
- Send occasional product updates prior to launch (infrequent — typically fewer than three emails total)
We will not sell, rent, share, or pass your email address to any third-party marketing service, advertiser, or data broker. We do not use your email address for any purpose beyond what is stated above.
6. Your Rights Under GDPR
If you are located in the United Kingdom or European Economic Area, you have the following rights in relation to personal data we hold about you:
- Right of access — to request a copy of the personal data we hold about you
- Right to rectification — to request correction of inaccurate data
- Right to erasure — to request deletion of your data
- Right to withdraw consent — to withdraw consent for waitlist communications at any time
- Right to object — to object to processing based on legitimate interest
- Right to data portability — to receive your data in a portable format
To exercise any of these rights, email us at support@cryptavitae.com. We will respond within 30 days. There is no charge for exercising these rights.
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data has been handled unlawfully: ico.org.uk/make-a-complaint.
7. Data Security
Waitlist email addresses are stored by Netlify on infrastructure covered by their security programme and data processing agreements. We do not store a separate copy of waitlist data on our own servers.
The CryptaVitae application stores your professional records in an encrypted vault on your own machine. We have no access to this data and no ability to recover it if your PIN is lost.
8. Data Transfers
Netlify and Google operate infrastructure globally, including outside the UK and EEA. Both organisations are covered by appropriate transfer mechanisms (Standard Contractual Clauses or adequacy decisions) under UK GDPR. We rely on Netlify's and Google's data processing agreements for these transfers.
9. Children's Privacy
This website and the CryptaVitae application are intended for professional use by adults. We do not knowingly collect personal data from individuals under the age of 18.
10. Changes to This Policy
If we make material changes to how we handle personal data, we will update this page and the effective date above. For significant changes that affect waitlist subscribers, we will notify you by email before the change takes effect.
11. Contact
For any questions about this privacy policy or your data rights:
support@cryptavitae.com