PK Pixel Kinetics

Privacy Policy

Effective Date: May 28, 2026

Pixel Kinetics, LLC ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains our practices regarding the information collected when you use our website, services, and software applications, including Writedown and Dashsalt.

Our foundational design axiom is simple: What we cannot see, we cannot lose. We build zero-knowledge software architectures where encryption happens client-side, ensuring you maintain sole control of your data.

1. Zero-Knowledge Cryptographic Architectures

For both of our primary applications, data protection is enforced mathematically at the client level:

  • Writedown (Markdown Document Editor): All document content, folder trees, and titles are encrypted on your local device before being synchronized to our cloud relay database. We use AES-256-GCM encryption with keys derived on your device (using Argon2id or local hardware keys). Because we do not store or transmit decryption keys, we have zero ability to read, decrypt, or share your documents.
  • Dashsalt (Secret Sharing): Cryptographic secret key sharding is performed entirely in your browser using Shamir's Secret Sharing. The relay API stores only opaque encrypted envelopes and routes shards. The plain-text key and the secret itself are reconstructed strictly inside your browser. The server never sees the plain text or the decryption keys.

2. Information We Collect

Because of our cryptographic architecture, the types of data we collect are extremely limited:

  • Account Registration Information: To sync encrypted databases (Writedown) or coordinate shards (Dashsalt), you may create an account. This collects your email address and authentication tokens. Password verification is performed using zero-knowledge protocols (Cognito SRP/OAuth workflows) so your actual password never reaches our server in plaintext.
  • Customer Support Data: If you contact us for technical assistance (via our support form or email), we collect your name, email address, and the details of your ticket. This data is used solely to respond to and resolve your request.
  • Log Data: Our servers automatically log minimal request headers (IP address, browser type, timestamp) to prevent service abuse, track system health, and diagnose network failures. These logs are automatically rotated and deleted after 30 days.

3. How We Use and Share Information

We use account and log data strictly to maintain, scale, and secure our software products. We do not sell, rent, or trade your personal information. We do not share your information with third-party advertisers or data brokers. We may only release information when required by law, or to protect the safety and rights of ourselves and others.

4. Security and Data Retention

We retain account records for as long as your account remains active. Encrypted blobs (keys, notes) are stored securely on AWS infrastructure. Because your data is client-side encrypted, even in the event of an infrastructure breach, your secrets and notes remain unreadable and mathematically secure.

5. Your Rights and Choices

You have the right to access, update, or request the deletion of your account details at any time. You can request full account deletion by reaching out to our support team. Upon deletion, all of your associated encrypted blobs and account metadata are purged from our active databases.

6. Changes to this Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the effective date.

7. Contact Us

If you have any questions or concerns about our privacy practices, please contact us via our support channel:

Pixel Kinetics, LLC
Website: www.pixelkinetics.com
Support Page: www.pixelkinetics.com/support.html