Welcome to anon.li ("we," "our," or "us"). Your privacy is our core mission. This Privacy Policy explains how we collect, use, and protect your information when you use our website https://anon.li and our associated services (collectively, the "Service").
By using the Service, you consent to the data practices described in this policy.
2. Information We Collect
We adhere to the principle of data minimization. We only collect the information necessary to provide and secure our Service.
2.1. Account Information
Email Address: Required for authentication, sending system notifications (e.g., verification, password reset, and magic links), and as the destination for forwarded emails.
Subscription Data: We process payment information through our third-party provider, Stripe. We do not store full credit card numbers on our servers.
2.2. Service Data (Alias and Drop)
Email Aliases: We store the aliases you create and their associated configurations (destination address, custom domains, and encrypted label/note metadata where configured).
Encrypted Files: Files uploaded via anon.li Drop are encrypted in your browser before upload using AES-256-GCM. We store only encrypted data and cannot access the unencrypted content of your files.
2.3. Email Traffic Data
No Hosted Mailbox Storage: We do not provide stored inboxes or long-term message archives for forwarded mail. Email content is processed by the mail stack for delivery, and the pipeline may queue messages transiently during transport.
Metadata Logging: We temporarily log minimal metadata (sender address, recipient alias, timestamp) for a maximum of 7 days. This is used solely for delivery debugging, spam prevention, and usage calculation. Logs are automatically purged after this period.
On this page
PGP Encryption: If you enable PGP encryption, emails are encrypted with your public key before forwarding, ensuring we cannot read the content.
Separate Mail Infrastructure: Alias forwarding is handled by a dedicated mail stack outside this web application repository. The product behavior described here reflects that deployed mail infrastructure and its published companion code, not this repository alone.
2.4. Technical Data
Cookies: We use only essential, first-party cookies to manage your authenticated session. We do not use third-party tracking or advertising cookies.
Analytics: We use Umami, a privacy-respecting, cookie-free analytics platform, to understand aggregate usage patterns on non-sensitive marketing and product pages. We do not send identifying values such as drop IDs or custom domains, and Umami is not loaded on Drop upload/download pages, auth pages, dashboard pages, or vault routes.
IP Addresses: We may process IP addresses for security purposes (rate limiting, fraud prevention, DDoS protection) but do not link them to your identity for tracking purposes.
Session Metadata: Active login sessions include device metadata such as user agent so you can review and manage signed-in devices from your dashboard. We do not store IP addresses in session records.
3. How We Use Your Information
We use your information solely to:
Provide the Service: Create aliases, forward emails, facilitate encrypted file sharing, and manage your account.
Process Payments: Handle subscriptions and billing through Stripe.
Ensure Security: Monitor for abuse, prevent spam, enforce rate limits, and protect our infrastructure.
Communicate: Send essential service updates, security alerts, and login notifications.
We do not use your information for advertising, profiling, or selling to third parties.
4. Third-Party Sub-processors
We share data only with trusted partners necessary for operation. All partners are contractually obligated to protect your data in accordance with applicable privacy laws.
Provider
Purpose
Data Processed
Location
Stripe
Payment processing & subscription management
Payment details, email
USA (PCI compliant)
Resend
Transactional emails (login links, notifications)
Email address
USA
Cloudflare
CDN, DDoS protection, DNS
IP addresses, traffic data
Global
Cloudflare R2
Encrypted file storage
Encrypted file data only
Global
Upstash
Rate limiting
Anonymized request data
Global
Umami
Privacy-respecting analytics
Page views, anonymized usage data (no cookies, no PII)
EU/USA
5. Data Retention
Account Data: Retained as long as your account is active. Upon account deletion, aliases, domains, files, drops, API keys, credentials, vault materials, and the account record are removed from live systems immediately; any saved local browser trust becomes unusable. Rolling disaster-recovery backups may retain historical snapshots for their normal retention period and are not an account restore path.
Metadata Logs: Automatically deleted after 7 days.
Encrypted Files: Deleted according to your configured expiration settings, or immediately upon manual deletion.
Subscription Records: Retained as required for tax and legal compliance (typically 7 years for financial records).
Backups: Rolling backups are retained for up to 30 days for disaster recovery purposes.
6. Your Rights
Regardless of where you live, we respect your privacy rights. Under GDPR, CCPA, and other applicable laws, you have the right to:
Access: Request a copy of your personal data.
Portability: Export your data in a machine-readable format.
Correction: Update inaccurate information via your dashboard.
Deletion: Delete your account and all associated data at any time.
Restriction: Request limitation of processing in certain circumstances.
Objection: Object to processing based on legitimate interests.
Withdrawal: Withdraw consent at any time where processing is based on consent.
To exercise these rights, use the tools provided in your dashboard or contact us at privacy@anon.li. We will respond within 30 days.
7. Security
We implement robust security measures to protect your data:
Encryption in Transit: Connections to the service use TLS.
Encrypted Sensitive Fields: Security-sensitive application data such as TOTP secrets, backup codes, DKIM private keys, and abuse-report decryption keys are encrypted at rest by the application. Full database-at-rest guarantees also depend on the underlying infrastructure and storage providers.
Zero-Knowledge Architecture: For file sharing, encryption keys are generated in your browser and never transmitted to our servers.
No Plaintext Password Storage: anon.li supports magic-link verification and recovery, plus password-based sign-in for vault-enabled accounts. Passwords are stored only as verifier data, never in plaintext.
Two-Factor Authentication: Optional TOTP-based 2FA for additional account security.
Open Source Transparency: The public source repositories help users and researchers verify product behavior, but the deployed service still depends on infrastructure and operational controls outside the published code.
8. Children's Privacy
The Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will delete it immediately. If you believe we have inadvertently collected such data, please contact us at privacy@anon.li.
9. International Data Transfers
Your information may be processed in countries other than your own, primarily the United States and the European Union. We ensure that international transfers comply with applicable data protection laws through:
Standard Contractual Clauses (SCCs) approved by the European Commission
Adequacy decisions where applicable
Additional technical and organizational safeguards
10. Do Not Track
We do not track users across third-party websites and do not engage in behavioral tracking or targeted advertising. Our analytics provider (Umami) is privacy-respecting and does not use cookies. We do not currently vary application behavior based on browser Do Not Track headers.
11. Changes to This Policy
We may update this Privacy Policy to reflect changes in our practices or for legal reasons. For significant changes, we will:
Post a notice on our website
Send an email notification to registered users
Update the "Last Updated" date at the top of this policy
Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.
12. Contact Us
For questions, concerns, or requests regarding your privacy, contact our Data Protection Officer: