Privacy Policy

Version 1.0.1, updated 19 Dec. 2024.

1. What data do we collect?

When the user registers an account on CamoMail, the following data is required and collected:

  • An external email address (for registration only and deleted afterwards, unless asked not to).
  • A username and a (hashed) password.
  • Optionally, a name and/or first name (can be fictive).
  • Optionally, additional usernames (i.e. aliases).
  • Optionally, an external email address to use for redirecting incoming emails.
  • Services (e.g. cloud, git forge, etc.) may require additional data (as described in Section 4).

2. How is your data used?

Our use of your data is strictly limited to providing the service. It is never shared with third parties. Activity logs of users are kept two weeks on our servers (unless specified otherwise in Section 4).

3. Where and how is your data stored?

Your data is stored on a virtual private server (VPS) in Canada. Data is backed up several times a week and stored on an encrypted physical drive. Backups are kept for up to two months in case something bad happens to the server. Therefore, even though your data is deleted from the server as soon as you delete your account, it may exist in backups up to two months after deletion.

4.1. CamoMail Chat

  • Chat history, as well as uploaded files, are stored on the server in plain-text, unless OMEMO encryption is used.
  • Contact list is stored unencrypted on the server.
  • Server logs containing information such as, but not limited to, your IP address and your username, are kept for two weeks and used to investigate brute-force attacks or other technical problems only.
  • XMPP is federated, so data is sent to other XMPP servers when interacting with users or rooms hosted on third-party servers.

4.2. CamoMail Email

  • All emails are stored on the server in plain-text, unless end-to-end encryption (PGP) is used.
  • Server logs containing information such as, but not limited to, your IP address, email addresses who are sending and receiving emails, and IP addresses of remote email servers are kept for two weeks and used to investigate brute-force attacks or other technical problems only.
  • Email is federated, so data is sent to other email servers when interacting with users registered on third-party servers.

4.3. CamoMail Cloud (Nextcloud)

  • Files are stored encrypted on the server, using a key pair derived from the user password. However, since keys are stored on the server, an attacker having access to the server and knowing your password would be able to decrypt your files.
  • Any other data, such as but not limited to, calendar, contacts, forms, tasks is stored unencrypted on the server.
  • Server logs containing information such as, but not limited to, your IP address and your username, are kept for two weeks and used to investigate brute-force attacks or other technical problems only.

4.4. CamoMail Git (Forgejo)

  • Git data is stored unencrypted on the server.
  • Email address may be available to other users if used in commits.
  • Server logs containing information such as, but not limited to, your IP address and your username, are kept for two weeks and used to investigate brute-force attacks or other technical problems only.

4.5. CamoMail Matrix (Synapse, Element, Cinny)

  • Chat history, as well as uploaded files, are stored on the server in plain-text, unless end-to-end encryption is used.
  • Server logs containing information such as, but not limited to, your IP address and your username, are kept for two weeks and used to investigate brute-force attacks or other technical problems only.
  • Matrix is federated, so data is sent to other Matrix servers when interacting with users or rooms hosted on third-party servers.

5. Your rights

Under the GDPR, you have the following rights:

  1. The right to access and consult your personal data at any time.
  2. The right to be forgotten, i.e. to request the deletion of your personal data.
  3. The right to rectification of your personal data.
  4. The right to restrict or limit the use of your personal data.
  5. The right to data portability.
  6. The right to object to the use of your data.

For any inquiries and questions, or to exercise any of your rights, you can send an email to privacy at camomail.org (PGP), although most of these rights can be exercised directly through the CamoMail user portal. Please note that usernames are not personal data and can't be changed, because of technical reasons.

6. Changes to this policy

Any change made to this policy (other than a correction of a typographical or grammatical error) will be announced to all users by email at least one week before it is enforced. If the change is strictly due to the discontinuation of a service, the notification email may not be sent to all users. A changelog will also be kept below to document major changes to this policy.

Version 1.0.1 (19 Dec. 2024)

  • Add Matrix service
  • Remove HedgeDoc service