SiftDNS Privacy Policy

Effective Date: 06-01-2025

1. Introduction

SiftDNS is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect information when you use our DNS resolution services.

2. Information We Collect

2.1 Information We DO NOT Collect

• DNS Queries: We do not log what websites you visit
• Browsing History: We do not track your internet activity
• Personal Browsing Data: We do not store records of your online behavior
• IP Address Logs: We do not maintain logs associating your IP with specific queries

2.2 Information We DO Collect

Support Communications

When you contact us for support, we may collect:

• Email address (only when you email us with questions)
• Support inquiry details
• Technical information you provide to help resolve issues

Payment Information

All payment and subscription data is collected and managed by Stripe:

• We do not directly collect or store any payment information
• We do not maintain customer accounts or billing records
• Stripe handles all subscription management and customer data
• We receive minimal transaction notifications from Stripe (subscription status only)

Technical Information

We collect minimal technical data for service operation:

• Network flow statistics (aggregated, non-personal)
• Server performance metrics
• DNS response times (aggregated)
• Error logs that do not contain personal information
• Email addresses for service notifications (IP address updates, maintenance notices)

Website Analytics

Our website may collect:

• IP addresses (for security and analytics)
• Browser type and version
• Referring website
• Pages visited on our website
• Time spent on website

3. How We Use Information

3.1 Support Communications

• Responding to your technical support requests
• Providing assistance with DNS configuration
• Improving our service based on user feedback

3.2 Service Provision

• Routing DNS queries to appropriate servers
• Maintaining service performance and reliability
• Detecting and preventing abuse
• Improving our filtering capabilities

3.3 Stripe Integration

• Receiving subscription status notifications (active/cancelled)
• No direct customer data processing on our end
• All customer communication handled by Stripe unless you contact us directly

4. Information Sharing and Disclosure

4.1 We Do Not Sell Personal Information

SiftDNS does not sell, rent, or trade your personal information to third parties.

4.2 Limited Sharing

We may share information only in these specific circumstances:

Service Providers

• Stripe: Payment processing (they handle all payment data according to their privacy policy)
• Infrastructure Providers: Hosting and technical services (no personal data shared)
• Email Services: For account and service communications

Legal Requirements

We may disclose information if required by law:

• Court orders or legal process
• Law enforcement requests with valid legal authority
• Protection of our rights, property, or safety
• Prevention of fraud or abuse

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of that transaction. We will notify users of any such change in ownership.

5. Data Security

5.1 Security Measures

We implement multiple security measures:

• Encrypted data transmission (TLS/SSL)
• Secure server infrastructure
• Access controls and authentication
• Regular security audits and updates
• Incident response procedures

5.2 DNS Query Security

• DNS queries are processed in memory only
• No persistent storage of query data
• Encrypted DNS options available (DNS-over-HTTPS)
• Direct root server queries for enhanced privacy

6. Data Retention

6.1 Support Communications

• Support emails are retained only as long as necessary to resolve issues
• You can request deletion of support communications at any time
• We do not maintain long-term customer communication archives

6.2 Subscription Data

• All customer and billing data is retained by Stripe according to their policies
• SiftDNS only receives subscription status notifications (no personal data stored)
• We do not retain payment or customer account information

6.3 DNS Query Data

• DNS queries are not stored or logged
• Query processing occurs in real-time with no retention
• Network flow statistics are aggregated and anonymized

7. Your Rights and Choices

7.1 Subscription Management

• All subscription changes must be made through Stripe's customer portal
• You can access your billing information and payment history through Stripe
• Cancellations and modifications are handled by Stripe directly

7.2 Support Data

• You can request deletion of any support communications
• We will delete support emails upon request
• No other personal data is stored by SiftDNS

7.3 Data Subject Rights (GDPR/CCPA)

Since we collect minimal data:

• Access: We can provide any support communications we have
• Erasure: We can delete support communications upon request
• Portability: Any support data can be provided in a portable format
• For subscription data, contact Stripe directly as they are the data controller

8. International Data Transfers

8.1 Data Location

• Our servers are located in USA
• Data may be processed in countries where our service providers operate
• We ensure appropriate safeguards are in place for international transfers

8.2 Adequacy and Safeguards

For transfers outside your jurisdiction, we rely on:

• Adequacy decisions by relevant authorities
• Standard contractual clauses
• Other appropriate safeguards as required by law

9. Children's Privacy

SiftDNS is not intended for children under 18. We do not knowingly collect personal information from children. If we learn we have collected such information, we will delete it immediately.

10. Third-Party Services

10.1 Payment Processing

We use Stripe for payment processing. Stripe's privacy policy governs their handling of your payment information.

10.2 Website Analytics

We may use analytics services to understand website usage. These services are configured to respect user privacy and comply with applicable laws.

10.3 Links to Other Sites

Our website may contain links to third-party sites. We are not responsible for their privacy practices.

11. Changes to This Policy

11.1 Policy Updates

• We may update this Privacy Policy periodically
• Changes will be posted on our website with a new effective date
• Material changes will be communicated via email
• Continued use constitutes acceptance of changes

11.2 Notification

We will notify you of significant changes by:

• Email notification to your account email
• Prominent notice on our website
• In-service notifications when appropriate

12. Contact Information

12.1 Privacy Questions

For questions about this Privacy Policy or our privacy practices:

Email: [email protected]

12.2 Data Protection Officer

If required by applicable law, you can contact our Data Protection Officer at:
Email: [email protected]

12.3 Supervisory Authority

You have the right to lodge a complaint with your local data protection authority if you believe we have not handled your personal information properly.

13. Specific Jurisdictional Provisions

13.1 European Union (GDPR)

For EU residents, we process personal data under the following legal bases:

• Contract: To provide our services
• Legitimate Interest: For service improvement and security
• Consent: For marketing communications

13.2 California (CCPA)

For California residents, you have additional rights under the California Consumer Privacy Act, including the right to know, delete, and opt-out of the sale of personal information.

13.3 Other Jurisdictions

We comply with applicable privacy laws in all jurisdictions where we operate.

---

Summary

What makes SiftDNS different:

• ✅ Zero logging of DNS queries
• ✅ Direct root server queries
• ✅ Minimal data collection (only support emails when you contact us)
• ✅ Stripe handles all customer data - we don't store personal information
• ✅ No account databases or customer records maintained by us
• ✅ Strong security measures for DNS infrastructure
• ✅ Transparent privacy practices
• ✅ No selling of personal information

Last updated: 06-01-2025