Secretus logoSecretus

Privacy Policy

Last Updated: July 13, 2026

Effective Date: July 12, 2026

This notice is written for an international user base. Because the controller is established in Romania, Romanian and EU data protection rules may still be relevant alongside local rights available to you.

1. Controller and Scope

This Privacy Policy explains how Secretus processes personal data when you visit the website, create an account, use the service, contact us, or interact with consent and analytics tools.

Controller
MUNTEANU C. D. MIHAI PERSOANA FIZICA AUTORIZATA, trading as Secretus, operating Secretus.
Registered address
Bucuresti, Sector 1, Bulevardul Bucurestii Noi, Nr. 136, Cod postal 012366, Romania
Contact
Privacy: privacy@secretus.app | Legal: legal@secretus.app | Support: support@secretus.app.

2. Categories of Personal Data We Process

Account and identity data
Email address, name if provided by your identity provider, Cognito identifiers, account region, plan/tier information, and account status.
Profile and usage data
Usage counters, plan entitlements, avatar URL if you choose to add one, account timestamps, and profile metadata stored in our AWS-hosted systems.
Service and session metadata
Session identifiers, session access tokens, connection state, technical delivery metadata, anti-abuse signals, diagnostics, and logs needed to operate and secure the service.
Billing and subscription data
If you purchase a plan: your plan and subscription status, subscription period dates, and Stripe customer/subscription identifiers. Payment card details are collected directly by Stripe/Link on their hosted checkout page and never reach our systems — we do not store or see card numbers.
Team data
If you use the team feature: a team owner can see each member's email address and join date (and, for invite links, which email address redeemed them); members can see the team owner's email address. This is the minimum needed to manage seats and is visible only inside the respective team.
Support and communications
Information you send to us in support, privacy, legal, or commercial inquiries.
Cookies and local storage
Essential browser storage used for authentication, product state, region selection, consent handling, and optional analytics where you consent.
Secret content model
Secretus is designed so secret content is encrypted client-side before transfer. We do not design the service to routinely access plaintext secret content, but we may still process metadata necessary for delivery, abuse prevention, and system operation.

3. Where the Data Comes From

Directly from you
When you sign in, use the product, configure your profile, submit support requests, or interact with consent controls.
Identity providers
When you authenticate using Google sign-in through AWS Cognito, we receive account attributes made available through that flow.
Technical systems
Some metadata is generated automatically by browsers, cloud infrastructure, WebRTC/signaling components, consent tooling, and security systems.

4. Purposes and Legal Bases

Where GDPR applies, we rely on one or more of the following legal bases depending on the activity involved.

Contract performance
To create and maintain your account, authenticate users, apply usage limits, enable product functionality, manage subscriptions and plan entitlements, and provide customer support relating to the service.
Legitimate interests
To secure the service, detect abuse, troubleshoot incidents, maintain reliability, defend legal rights, and improve operational resilience.
Consent
For optional analytics and similar non-essential technologies where consent is required by applicable law.
Legal obligation
To comply with binding legal requests, accounting or tax obligations where applicable, and mandatory incident or regulatory duties.

5. Cookies, Analytics, and Similar Technologies

Essential technologies
We use essential browser storage and cookies for authentication, security, regional configuration, UI state, and core service operation.
Consent management
We use Cookiebot to capture and manage cookie consent choices.
Optional analytics
We currently use Google Analytics only after valid consent has been given where required. Analytics is not intended to load before that consent is recorded.
Changing choices
You can revisit available consent controls to change optional analytics preferences.

6. Recipients and Service Providers

AWS
We use Amazon Web Services for hosting, account-related infrastructure, and core service operations.
AWS Cognito
We use AWS Cognito for account authentication and identity-related processing.
Google sign-in
Google acts as the identity provider for the current sign-in flow.
Stripe and Link (payments)
Subscription payments are processed by Stripe on its hosted checkout, with Link (Sold through Link, LLC) acting as merchant of record under Stripe Managed Payments. For payment processing, fraud prevention, tax collection, receipts, and payment-related support, Stripe and Link process your data as described in the Stripe Privacy Policy (stripe.com/privacy) and Link's terms. We receive from Stripe only what we need to activate your plan: subscription status, period dates, and customer/subscription identifiers.
Cookiebot
Cookiebot is used for consent management and related consent records.
Google Analytics
Google Analytics is used only where valid consent has been collected for optional analytics.
Legal and security disclosures
We may disclose data where required by law or where reasonably necessary to investigate abuse, enforce our rights, or protect users and the service.

7. International Transfers

Secretus is operated internationally from Romania. Core account/profile operation is currently configured around EU-hosted infrastructure, but some providers may involve processing or access outside the EEA.

Core region
Current account/profile processing is configured around EU regional infrastructure.
Third-country transfers
Some providers, including identity, consent, analytics, payments (Stripe/Link), support, or infrastructure providers, may involve transfers outside the EEA.
Safeguards
Where required, we rely on legally recognized transfer mechanisms such as adequacy decisions, contractual safeguards, or other lawful bases recognized under applicable law.

8. Data Retention

We retain data only for as long as necessary for the purposes described above, and then as long as needed to meet legal, security, and evidentiary requirements.

Account and profile data
Retained while your account remains active and then for a limited period needed for security, dispute handling, backup cycles, or legal compliance.
Technical and security logs
Retained according to operational necessity, incident response needs, and abuse-prevention requirements, then rotated or deleted.
Billing records
Subscription and transaction records are retained for the periods required by applicable accounting and tax legislation, even after account closure.
Consent records
Retained for as long as necessary to demonstrate consent choices and manage compliance obligations.
Support communications
Retained for as long as necessary to resolve the request, maintain a support history, and protect legal rights.
Secret exchange behavior
Secretus is designed for one-time exchange and session invalidation behavior, but associated technical/session metadata may still persist for operational or security reasons.

9. Security and Automated Decision-Making

Technical and organizational measures
We apply security measures appropriate to the risk (GDPR Art. 32), including client-side encryption of secret content, TLS in transit, encrypted parameter storage for operational secrets, access controls, server-side authorization checks, rate limiting, and audit logging. No measure guarantees absolute security.
Personal data breaches
If a personal data breach occurs that is likely to result in a risk to your rights and freedoms, we will notify the competent supervisory authority and, where required by GDPR Arts. 33–34, the affected users, without undue delay.
No automated decision-making
We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects (GDPR Art. 22). Anti-abuse systems (such as rate limits) apply uniform technical rules, not individual profiling.
No sale of personal data
We do not sell personal data and do not share it with third parties for their own advertising purposes.

10. Your GDPR Rights

Access and rectification
You may request access to your personal data and correction of inaccurate or incomplete data.
Erasure and restriction
You may request deletion or restriction of processing where the legal conditions for those rights are met.
Self-service account deletion (Art. 17)
You can delete your account yourself, at any time, from your profile — no support request needed. Deletion immediately: cancels any active subscription, deletes your saved payment method at Stripe, dissolves your team relationships (members you invited lose shared access; if you are a member, you leave), revokes your API keys, permanently deletes your profile record, and removes your sign-in account.
What deletion does not remove
Invoices and transaction records remain with Stripe/Link under their own legal (accounting/tax) retention obligations — you can also address deletion requests for payment data to Stripe as merchant of record. Already-shared secrets are encrypted and expire on their own schedule (at most 30 days from creation); audit events expire per their retention period. If you signed in with Google and sign in with Google again after deletion, a brand-new, unrelated account is created.
Objection
You may object to processing based on legitimate interests where applicable.
Portability
You may request a portable copy of data you provided where the right applies.
Withdraw consent
Where processing is based on consent, you may withdraw that consent at any time without affecting prior lawful processing.

11. Complaints and How to Exercise Rights

Contact us first
You can contact us at privacy@secretus.app or legal@secretus.app to exercise rights or raise concerns.
Verification
We may request reasonable information to verify identity before acting on privacy requests that affect account access or other sensitive data.
Supervisory authority
You may lodge a complaint with your local supervisory authority in the EU/EEA, and in particular with ANSPDCP, because the controller is established in Romania.
ANSPDCP reference
Romanian National Supervisory Authority for Personal Data Processing: https://www.dataprotection.ro/

12. Children

Age position
Secretus is not intended for children under 16.
If data is identified
If we become aware that we have processed personal data from a child in a way that is not permitted, we will take reasonable steps to remove or restrict that data as appropriate.

13. Browser Extension

The optional Secretus browser extension provides the same one-time, end-to-end encrypted secret sharing as the web app. It follows the same zero-knowledge design: encryption happens on your device and decryption keys never reach our servers.

Data stored in your browser
An authentication refresh token in the browser's session storage (cleared when you close the browser, never synced between devices); your preferred expiry setting; and, for the “My secrets” list, local metadata about secrets you created from that browser (identifier, optional label, and dates). The extension never stores secret content, share links, or decryption keys.
Page access
The extension reads the current page only when you explicitly invoke “Share selection securely” from the right-click menu, and only the text you selected. It does not read, collect, or transmit browsing history or page content otherwise.
Network communication
The extension communicates only with AWS Cognito (authentication) and the Secretus API. Password sign-in uses SRP, so your password itself never leaves your device.
No tracking
The extension contains no analytics or tracking of any kind.

14. Changes to This Policy

Updates
We may update this Privacy Policy from time to time to reflect changes in the service, legal requirements, or providers we use.
Notice
Material changes may also be communicated by email or in-product notice where appropriate.

For the legal framework governing use of the service, please review our Terms of Service.

For cancellation and refund specifics, please review our Refund & Cancellation Policy.

Contact

MUNTEANU C. D. MIHAI PERSOANA FIZICA AUTORIZATA

Trading as: Secretus

Product: Secretus

CUI 53962936

EU VAT: RO54197611

Bucuresti, Sector 1, Bulevardul Bucurestii Noi, Nr. 136, Cod postal 012366, Romania

Romania, European Union

Privacy: privacy@secretus.app