PRIVACY POLICY

LAST UPDATED: 2025 · PETI SIMPANAN

1. Who We Are

Peti Simpanan is a zero-knowledge encrypted message vault accessible at petisimpanan.vercel.app. This Privacy Policy explains what data we handle and why — spoiler: it is almost nothing.

2. What We Do NOT Collect

• Your name, email address, phone number, or any personal identifier.
• Your IP address — we do not log it.
• Your plaintext message — it never reaches our server.
• Your password — it never leaves your browser.
• Cookies, tracking pixels, or analytics of any kind.
• Device information or browser fingerprints.

3. What We DO Store (Temporarily)

When you store a message, the following is saved in our database:

• Encrypted ciphertext — your message after AES-GCM encryption. It is mathematically unreadable without your password. We cannot decrypt it.
• A SHA-256 hash of your password — used only as a lookup key. This is a one-way hash. It cannot be reversed to recover your original password.

Both are automatically and permanently deleted either immediately upon retrieval or after 24 hours — whichever comes first. There is no archive, no backup, no log.

4. Zero-Knowledge Architecture

All encryption and decryption happens entirely inside your browser using the Web Crypto API (AES-GCM 256-bit). Your password and plaintext message are never transmitted to our server at any point. This means even if our server were compromised, there is nothing readable to steal.

5. Third Party Services

We use the following third-party infrastructure to operate the Service:

• Vercel — hosting and deployment. Vercel may collect standard server access logs. Refer to Vercel's Privacy Policy at vercel.com.
• Upstash Redis — temporary encrypted data storage. Only the ciphertext and hashed key are stored. Refer to Upstash's Privacy Policy at upstash.com.

6. Compliance with Malaysian PDPA

Under Malaysia's Personal Data Protection Act 2010 (PDPA), we are committed to responsible data handling. As we do not collect any personal data as defined under the PDPA, the majority of the Act's obligations do not apply. Nonetheless, we voluntarily operate in the spirit of the Act by collecting the absolute minimum data required and deleting it as soon as possible.

7. Data Breach

In the unlikely event of a server breach, the attacker would only obtain encrypted ciphertext and hashed keys — neither of which can be used to read your messages or identify you. There is no meaningful data to breach.

8. Your Rights

Because we collect no personal data and cannot identify you, we are technically unable to fulfil requests to access, correct, or delete your data — we simply have nothing linked to you. Your data deletes itself automatically.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available at this URL. Continued use of the Service constitutes acceptance of the updated policy.

This policy is effective as of 2025. Peti Simpanan operates under Malaysian law.