Note: when we talk about “Services” we mean any and all of our websites, products, and services.
Information We Hold and How We Use It
We hold two kinds of information from our users to deliver Services: Secure Data, and Service Data. We treat both Secure Data and Service Data with the same high level of security and assurance, and both kinds of data are always confidential.
Secure Data is data that we cannot access under any circumstance, and includes any information you store in your Ctrlpanel account. This data is encrypted using secure cryptographic keys that exist only in the possession and under the control of our customers. We have no way of accessing or providing decrypted Secure Data and we never receive copies of unencrypted Secure Data. Secure Data is your property, in which we claim no rights, title, or interest beyond that necessary to deliver Services to you. You may add, modify, and delete Secure Data at your discretion. If you do not have a Ctrlpanel account you cannot provide us with Secure Data.
Service Data is information that is not encrypted and is necessary for us to provide Services. Service Data includes but is not limited to server logs, billing information, number of accounts and email addresses. We do retain rights to Service Data.
In some cases we may collect Diagnostic Reports and other troubleshooting, bug, and crash reporting information from customers to help determine problems with Services. If you elect to use beta software, some troubleshooting, bug, and crash reporting data may automatically be transmitted to us. You may decide not to use beta software at your discretion. This data may contain sensitive and personally identifying information, but will never contain Secure Data. Copies of Diagnostic Reports and other information transmitted to us become our property which we may use to continually enhance and improve our Services. We consider Diagnostic Reports, bug, and crash reporting data, and all other troubleshooting information to be Service Data.
We may use your contact information to communicate with you about Service activity, provide support, and send you other information such as product updates and announcements. You may choose to stop receiving communications from us, except certain important notifications such as billing and account security alerts.
Keeping Your Information Safe
We have implemented strict access controls to limit who can access Service Data. Only certain employees, vendors, and contractors of Ctrl Alt Deseat have the ability to access or review Service Data, and Service Data is only accessed for valid business needs such as but not limited to providing customer service, evaluating Service performance and use, and monitoring and improving our infrastructure.
Under no circumstances do we ever use your Secure Data for any purpose other than transferring your encrypted Secure Data between your devices and delivering it to you, maintaining a copy in our databases to ensure that your devices are up to date and that you have a backup, and ensuring the integrity of your data.
Your Responsibilities for Protecting Your Data
When you create a Ctrlpanel account you will receive an Backup Key and a Master Password. Both are locally generated on your computer.
It is extremely important that you understand that anyone with both your Backup Key and Master Password can access your Secure Data. It is equally important that you keep a copy in a safe place for your own reference, because future access to your Secure Data depends on having access to both your Backup Key and your Master Password. We will never ask you for your Master Password or your full Backup Key, and you should never send either to us.
Due to the nature of our design and the sensitivity of the information you entrust to us (even in encrypted form), it may not be possible for us to help you with certain customer service requests.
Designed Primarily for Adults
We do not produce our Services for nor market our Services to children, including those thirteen years old or younger. However you may add your own children as users to our Services, but you are solely responsible for their use of our Services.
We have both policy and technological protections to prevent the unauthorized disclosure of information. However we do reserve the right to disclose any information we have if compelled to do so by a court of law with competent jurisdiction, and in such an event we will hand over requested Secure Data and Service Data. If permitted by the order issued by the court, we will notify you of such a request and whether or not we have complied. However your Secure Data should remain private as long as you keep to your Responsibilities for Protecting Your Data as outlined above. If we have a reasonable and good faith belief that a disclosure is necessary to prevent criminal activity or damage to life or property, we may disclose Service Data to the authorities.
We have never and will never sell customer information. We use your Secure Data for no purpose other delivering it to your devices. If you send us email or Service Data, that information will be maintained on servers provided by our vendors in the United States.