Last updated 26/06/2026
This Privacy Policy explains how timedrop.it collects, uses, and protects information when you use timedrop.it and related services. It is written for users in the United States. By using the Service you agree to the practices described here.
timedrop.it provides end-to-end encrypted digital time capsules that are delivered to a recipient on a future date you choose. For privacy questions you can reach us at info@timedrop.it.
Account data — if you create an account, your email address and basic authentication data.
Capsule metadata — the recipient email, the unlock date, and whether a capsule is private or public.
Capsule contents — your letter, photos, and voice notes are encrypted on your device before upload. We store only ciphertext and cannot read it.
Usage and device data — limited technical logs (such as IP address, browser type, and timestamps) used for security and reliability.
Privacy-friendly analytics — we count page views with a first-party, cookieless system that stores only anonymous aggregates (page, coarse device/browser, a country derived from your IP, and a daily one-way visitor hash). We set no tracking cookies, store no raw IP or full user-agent, and honor Do-Not-Track / Global Privacy Control. Country lookup uses GeoLite2 data created by MaxMind (www.maxmind.com); your IP is used only momentarily and never stored.
To deliver your capsule link to the chosen recipient on the unlock date; to operate, secure, and improve the Service; to communicate with you about your account and delivery reminders; and to comply with legal obligations.
We do not sell your personal data, and we do not use the contents of your capsules for advertising or model training.
Capsule contents are protected with end-to-end encryption (AES-256). The decryption keys are held by you and your recipient — not by timedrop.it. Because of this, we are technically unable to read, recover, or hand over the contents of a private capsule, even if compelled.
If you explicitly choose to make a capsule public, its contents may appear anonymously on our public wall on the unlock date. Do not include information you do not want shown publicly. Your recipient still receives the private link first.
We retain encrypted capsule data until its delivery and for a reasonable period afterward, or until you delete it. Account data is kept while your account is active. You may request deletion of your account and associated data at any time.
We share data only with infrastructure providers (such as hosting and email delivery) acting on our behalf under confidentiality obligations, or where required by law. These providers never receive your decryption keys.
You may ask us to access, correct, export, or delete the personal information we hold about you. To exercise these rights, contact info@timedrop.it; we will not discriminate against you for doing so.
If you are a California resident, the CCPA/CPRA gives you the right to know what personal information we collect, to delete it, to correct it, and to opt out of its “sale” or “sharing.” timedrop.it does not sell or share your personal information, and we never use the contents of your capsules for advertising.
The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13 (consistent with COPPA). A capsule may be addressed to a child, but the account holder must be an adult. If you believe a child has given us personal information, contact info@timedrop.it and we will delete it.
We may update this Policy from time to time. Material changes will be posted on this page with a revised “last updated” date.
Questions about privacy? Email info@timedrop.it.