Privacy Policy

Last updated: January 2025

Overview

Daak ("we", "our", "us") operates the email hosting service at getdaak.com. This Privacy Policy explains how we collect, use, and protect your information.

The short version: We collect only what's necessary to provide email hosting. We don't sell your data. We don't read your emails. Your privacy matters to us.

Information We Collect

Account Information

  • Email address (for account creation and communication)
  • Name (optional, for personalization)
  • Phone number (optional, for WhatsApp support)
  • Domain name(s) you register with us

Payment Information

  • Billing address
  • Payment method details (processed securely by Razorpay — we don't store card numbers)
  • Transaction history

Email Data

  • Emails sent and received through our service are stored on our servers
  • Email metadata (sender, recipient, subject, timestamps)
  • We do NOT read the content of your emails except for automated spam filtering

Technical Data

  • IP addresses (for security and spam prevention)
  • Device information (browser type, operating system)
  • Usage logs (login times, email sending activity)

How We Use Your Information

  • To provide the service: Storing and delivering your emails
  • To process payments: Charging your subscription via Razorpay
  • To communicate: Sending service updates, support responses
  • To prevent abuse: Blocking spam, detecting fraudulent activity
  • To improve: Understanding usage patterns (aggregated, anonymized)

Third-Party Services

We work with the following third parties:

  • MXroute: Our email infrastructure provider (US-based, stores email data)
  • Razorpay: Payment processing (Indian company, PCI-DSS compliant)
  • Web3Forms: Waitlist form processing

Each of these services has their own privacy policy. We only share the minimum data necessary for them to provide their services.

Data Storage & Security

  • Email data is stored on servers located in the United States (MXroute infrastructure)
  • All connections use TLS encryption (data encrypted in transit)
  • Email data is NOT encrypted at rest — we're not a privacy-focused email provider like ProtonMail
  • Regular security audits and automated monitoring
  • Payment data is handled by Razorpay and never stored on our servers

Data Retention

  • Email data: Retained as long as your account is active
  • Account data: Retained for 30 days after account deletion
  • Payment records: Retained for 7 years (legal requirement in India)
  • Logs: Retained for 90 days for security purposes

Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and associated data
  • Export your emails (via IMAP)
  • Opt out of marketing communications

To exercise these rights, contact us via WhatsApp or email.

Cookies

We use minimal cookies for essential functionality (login sessions, preferences). We don't use advertising cookies or third-party tracking.

Children's Privacy

Our service is not intended for users under 18. We don't knowingly collect data from children.

Changes to This Policy

We may update this policy occasionally. Significant changes will be communicated via email to active users. The "Last updated" date at the top indicates when this policy was last revised.

Contact Us

Questions about this privacy policy?