Privacy Policy

Your trust matters. Here’s how we protect your data.

Last updated: Monday 22nd of September 2025

Overview

This Privacy Policy explains how JORDILIGHT INC (“we”, “us”, “our”) collects, uses, and shares information when you use the DeadDrop mobile apps (iOS/Android) and web app at https://app.deaddrops.app (collectively, the “Services”).

Who we are (Data Controller)

JORDILIGHT INC
1629 K Street NW, Washington DC, DC 20006
Contact: [email protected]

What we collect

  • Account data: email, display name (if provided), and authentication identifiers.
  • Encrypted content (“Drops”): your files/messages are end-to-end encrypted. We cannot decrypt them on our servers.
  • Usage & device data: app version, device type, OS, basic diagnostics and crash logs (no clipboard/contacts/location without your action).
  • Payments: handled by Apple/Google or our payment processor. We receive limited transaction metadata (e.g., subscription status) but not full card numbers.

How we use information

  • Provide and maintain the Services (create accounts, deliver encrypted Drops, customer support).
  • Secure the Services (fraud and abuse prevention, incident detection, diagnostics).
  • Process subscriptions and billing.
  • Comply with legal obligations.

End-to-end encryption

Your Drops are encrypted on your device and can only be decrypted by intended recipients with the necessary keys. We cannot access Drop contents on our servers.

Legal bases (EEA/UK)

If you are in the EEA/UK, we process personal data under these bases:

  • Contract: to provide the Services you request (account, delivery, billing).
  • Legitimate interests: to keep services secure, prevent abuse, and improve reliability (balanced against your rights).
  • Consent: where required (e.g., certain analytics or notifications in your jurisdiction).
  • Legal obligation: to meet regulatory or law-enforcement requirements.

Sharing

  • Service providers: infrastructure, billing, analytics, and support vendors who are bound by confidentiality and data-protection terms.
  • Legal & safety: to comply with applicable law or protect rights, safety, and security.
  • Business transfers: in a merger, acquisition, or asset sale, subject to this Policy and your rights.

International transfers

Where data is transferred outside your country (e.g., to the United States), we use appropriate safeguards such as Standard Contractual Clauses where required.

Retention

We keep personal data only as long as needed for the purposes above. Encrypted Drops and related metadata are retained per your account settings. You can delete Drops or your account at any time; content marked for deletion is removed from active systems within a reasonable timeframe and from backups on a rolling schedule.

Your rights

Depending on your location, you may have rights to access, correct, delete, or receive a copy of your personal data, to restrict/opt out of certain processing, and to withdraw consent. To exercise rights, contact [email protected]. You may also lodge a complaint with your local data-protection authority.

California residents

Under California privacy laws, you have rights to know, delete, correct, and opt-out of certain sharing/sale. We do not sell personal information. We disclose limited categories of personal information to service providers for business purposes. To submit a request, email [email protected]. If you use an authorized agent, we may require verification steps.

Children

The Services are not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided personal data, contact us and we will take appropriate action.

Security

We use technical and organizational measures appropriate to the risk, including end-to-end encryption for Drop contents, TLS in transit, access controls, and monitoring. No system is 100% secure; we continuously improve our safeguards.

Third-party services

Our apps may link to third-party services (e.g., App Store / Google Play billing, sign-in). Your use of those services is governed by their policies.

Data deletion

You can delete Drops and your account from within the app/web. You can also request deletion via [email protected]. We will confirm and process your request subject to legal obligations.

Changes to this policy

We may update this Policy from time to time. We will post the updated version here and update the “Last updated” date above. Material changes will be communicated through the app or by email when appropriate.

Contact

Questions or concerns? Contact our privacy team at [email protected].