Privacy Policy

Last updated:

1. Introduction

ReefSecure PasswordShare ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our secure password sharing service.

2. Information We Collect

2.1 Information You Provide

  • Secret Content: The sensitive information you choose to share through our service
  • Passphrases: Optional passphrases you set for additional security
  • Expiration Settings: Your chosen expiration times and view limits

2.2 Information We Collect Automatically

  • Usage Data: Information about how you interact with our service
  • Technical Data: IP addresses, browser type, device information
  • Log Data: Server logs for security and performance monitoring

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain our secure password sharing service
  • Encrypt and securely store your secrets until expiration
  • Automatically delete expired secrets as promised
  • Ensure security and prevent abuse
  • Comply with legal obligations

4. Data Encryption and Security

We implement security measures to protect your data:

  • Server-Side Encryption: All secrets are encrypted using AES-256 before storage
  • Passphrase Protection: Optional passphrases add an extra layer of security
  • Secure Storage: Encrypted data is stored securely on our servers
  • Automatic Deletion: Secrets are permanently deleted after expiration or viewing

5. Data Retention

We retain your data only as long as necessary:

  • Active Secrets: Until they expire or reach their view limit
  • Log Data: Up to 30 days for security monitoring

6. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right of Access: Request information about your personal data
  • Right to Rectification: Correct inaccurate personal data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we process your data
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to processing of your personal data

7. Cookies and Tracking

We use minimal cookies for essential functionality:

  • Essential Cookies: Required for basic service operation
  • No Tracking: We do not track users across other websites

8. Third-Party Services

We may use trusted third-party services for:

  • Infrastructure hosting and security
  • Content delivery networks

All third-party services are bound by strict data protection agreements.

9. International Data Transfers

Your data may be processed in countries outside the EEA. We ensure adequate protection through:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by the European Commission
  • Appropriate safeguards as required by GDPR

10. Children's Privacy

Our service is not intended for children under 16. We do not knowingly collect personal information from children under 16.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

12. Contact Information

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

  • Email: helpdesk@pluritech.com
  • Data Protection Inquiries: helpdesk@pluritech.com

13. ReefSecure Security Suite

ReefSecure PasswordShare is part of the ReefSecure security suite. For more information about our comprehensive cybersecurity solutions, visit reefsecure.eu.

14. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe we have not handled your personal data in accordance with GDPR.