Legal
Privacy Policy
Effective Date: April 1, 2026 | Last Updated: April 1, 2026
Keep is a DNS filtering service. When your devices make requests to websites and services, those requests pass through Keep's DNS servers, where we apply your filtering preferences and log activity to power your dashboard. This policy explains exactly what we collect, how long we keep it, and what we do with it.
1. What We Collect
| Data | What it includes | Why |
|---|---|---|
| Account | Email address, hashed password | Authentication and account management |
| DNS query log | Domain name, query type, allow/block result, category matched, response time, source IP, timestamp | Powers your real-time dashboard, activity history, and top domain charts |
| Device records | IP address, inferred device type, first/last seen timestamps, query and block counts, privacy score | Per-device activity view and privacy scoring in your dashboard |
| Linked IPs | Your public IP address linked to your account | Identifies your network so filtering applies your settings. Expires after 7 days. |
| Filtering preferences | Category selections, custom allow/block rules, family profiles and schedules | Applies your configuration to DNS requests |
| Alerts | Anomaly type, severity, source IP, timestamp | Notifies you of unusual activity on your network |
| Community threat signals | Domain names and query patterns aggregated across all users — not linked to your account | Detects emerging threats faster than public blocklists |
2. What We Do Not Collect
- The content of your internet traffic — Keep processes DNS requests only, not web pages, messages, or payload data
- Precise location data or GPS coordinates
- Hardware identifiers or serial numbers
- Data from inside your devices — only DNS requests that pass through our servers
3. Your DNS Query Log
Every DNS request your network makes is logged and linked to your account. This is what powers your dashboard — you can see which domains were queried, which were blocked, and which devices made which requests. This data is yours: you can view it, and it is deleted when you delete your account.
We do not sell, license, or share your query log with third parties. We do not use it for advertising or profiling. We use it to power your dashboard and to detect anomalous activity on your network such as unusual query volumes that may indicate malware.
4. Community Threat Detection
Keep contributes anonymized domain-level signals to a shared threat intelligence dataset. When your network queries a domain, that domain name is counted in an aggregate shared across all Keep users. Your account ID, IP address, and device information are not included in this aggregate — only the domain and its query pattern.
5. Data Retention
- DNS query logs: retained while your account is active. Deleted when you delete your account.
- Device records: retained while your account is active. Deleted when you delete your account.
- Linked IPs: expire automatically after 7 days.
- Account data: deleted within 30 days of account deletion.
- Community threat signals: retained indefinitely in aggregate form. Because they contain no account identifiers, they cannot be deleted on a per-user basis.
6. Data Sharing
We do not sell your data. We do not share your data with advertisers or data brokers.
We may share data only in the following limited circumstances:
- With infrastructure providers to the minimum extent necessary to operate the service. These providers are contractually prohibited from using the data for any other purpose.
- If required by law, such as in response to a valid subpoena or court order. We will notify you unless legally prohibited from doing so.
- In connection with a merger, acquisition, or sale of assets, provided the acquiring entity agrees to honor this Privacy Policy.
7. Security
All data is encrypted in transit using TLS. Passwords are stored as bcrypt hashes and are never readable by Keep staff. Access to production systems is restricted and logged. No system is perfectly secure, but we are committed to protecting your data with appropriate safeguards.
8. Your Rights
You have the right to:
- Access the data we hold about you
- Delete your account and all associated data at any time from your dashboard
- Export your dashboard data
To exercise any of these rights, contact us at privacy@usekeep.com.
9. Children's Privacy
Keep is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, contact us and we will delete it.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the service. The "Last Updated" date at the top reflects the most recent revision.
11. Contact
Questions about this Privacy Policy or our data practices: