Privacy Policy
Last updated: April 2026
What We Collect
To provide email service, we necessarily retain:
- Your email address and account credentials (passwords are hashed, never stored in plain text)
- Your emails, stored privately in your mailbox
What We Do NOT Collect
- No IP addresses in logs. Connection source IPs are not recorded.
- No third-party analytics, tracking pixels, or surveillance scripts on any website pages.
- No data sold, shared, or provided to any third party — ever.
- No cooperation with unsolicited government or law enforcement requests without valid legal process.
How We Protect Your Mail
- TLS encryption in transit. All connections use TLS 1.2 or higher. We enforce this via MTA-STS.
- DKIM signing. Outbound mail is cryptographically signed to prevent spoofing.
- DMARC protection. We monitor and enforce domain integrity to protect your deliverability and identity.
- No content scanning of stored mail. Your emails are not analyzed, scanned for advertising, or processed beyond what's needed for spam filtering.
- Brute-force protection. Automated abuse attempts are blocked at the firewall level.
Your Data, Your Control
- Account deletion: email admin@kinky.quest at any time. All mailbox data is permanently destroyed.
- Export: download your mail via standard IMAP at any time using your email client.
- No backups retained after account deletion.
Jurisdiction and Hosting
This service is hosted in Finland and operated under Finnish and EU law, including GDPR. We are not subject to US surveillance programs such as Section 702 FISA or executive orders that bypass judicial oversight.
Service Scope
kinky.quest provides email services for approved community members. We are a small, purpose-built mail system — not a general-purpose provider.