Sign inCreate New Account

Privacy Policy

Your privacy is our priority. Learn how we collect, use, and protect your information with transparency and respect for your rights.

Last updated: May 2026

Data Protection

Your personal information is encrypted and securely stored

Transparency

Clear information about what data we collect and why

Privacy Rights

Full control over your data with GDPR and CCPA compliance

User Consent

You decide what information to share with us

Privacy Policy

Welcome to Public!

At Public, accessible from https://public.kim, one of our main priorities is the privacy of our visitors. This Privacy Policy document contains types of information that is collected and recorded by Public and how we use it.

Important Notice

If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us. This Privacy Policy applies only to our online activities and is valid for visitors to our website.

Consent

By using our website, you hereby consent to our Privacy Policy and agree to its terms.

Information We Collect

We collect information you provide directly to us and information we obtain automatically when you use our services. All data collection is encrypted in transit for your security.

Personal Information

  • β€’Name: Required for account functionality
  • β€’Email Address: Required for account management
  • β€’User IDs: Required for app functionality
  • β€’Address: Optional, for personalization
  • β€’Phone Number: Optional, for security
  • β€’Other Personal Info: Profile details you choose to share

Financial Information

  • β€’Payment Info: Securely processed for premium features
  • β€’Purchase History: For account management and analytics

Content & Media

  • β€’Photos & Videos: Content you upload and share
  • β€’Messages: In-app communications and chat history
  • β€’User-Generated Content: Posts, comments, and interactions
  • β€’Files & Documents: Content you upload to our platform

App Activity & Technical Data

  • β€’ App Interactions: How you navigate the app
  • β€’ Search History: In-app searches for personalization
  • β€’ Device IDs: For analytics and fraud prevention
  • β€’ Crash Logs & Diagnostics: To improve performance

Data Collection Methods

We support multiple account creation methods including email/password, OAuth (Google Sign-in), and other authentication methods. Some data collection is required for core functionality, while other data is optional.

Password Vault (End-to-End Encrypted)

Public provides an optional in-app Password Vault that lets you save website credentials (site name, URL, email or username, password, and notes) and sync them across your devices. The vault is designed as a zero-knowledge system: your credentials are encrypted on your device before they ever reach our servers, and we cannot decrypt them under any circumstances.

How your passwords are protected

  • β€’ You choose a master password known only to you. It is never sent to our servers and is never persisted on your device.
  • β€’ Your master password is run through Argon2id, a memory-hard key-derivation function, to derive a 256-bit key.
  • β€’ That key is used only to unwrap a randomly generated vault key, which in turn encrypts every saved credential with AES-256-GCM on your device.
  • β€’ Only the resulting opaque ciphertext, the random nonce, and the public KDF parameters are transmitted (over HTTPS) and stored on our servers.

What we store on our servers

  • β€’Encrypted blob: the AES-GCM ciphertext for each saved entry
  • β€’Random nonce: a 12-byte initialisation value per entry
  • β€’KDF parameters: salt, memory cost, time cost, and parallelism
  • β€’Wrapped vault key: your random vault key encrypted by your master-password-derived key
  • β€’Verifier blob: a tiny known constant encrypted with the same key, used by your device to detect a wrong master password

What we cannot see

  • β€’The plaintext of any saved password
  • β€’The websites, apps, emails, or usernames inside your vault
  • β€’Your master password β€” at any point, on any device
  • β€’Any data that would let us or a third party recover your vault without the master password

Master password is unrecoverable

Because zero-knowledge encryption means we never hold your key, we cannot reset or recover your master password. If you forget it, the encrypted data on our servers becomes permanently unreadable and we will not be able to restore your saved credentials. You can change your master password from within the app while your vault is unlocked; this re-wraps the same vault key without re-encrypting individual entries.

Additional safeguards on your device

  • β€’ Vault screens use Android's FLAG_SECURE to block screenshots and hide content from the app switcher.
  • β€’ Your unlocked vault key is held only in memory and is automatically wiped after a short period of inactivity.
  • β€’ When you copy a password to your clipboard, it is marked as sensitive on Android 13+ and automatically cleared after 30 seconds.
  • β€’ You can delete individual entries or your entire account at any time from within the app.

The Password Vault is an opt-in feature. If you never create a vault, no credential data of this type is collected. The vault is independent of the password you use to sign in to your Public account β€” the two are stored and protected separately.

How We Use Your Information

We collect and share your information for the following purposes, in compliance with applicable data protection laws:

App Functionality

  • β€’Core app features and services
  • β€’User authentication and account management
  • β€’Content delivery and sharing
  • β€’Communication features

Analytics & Improvement

  • β€’App performance monitoring
  • β€’Usage analytics and insights
  • β€’Feature development and testing
  • β€’Bug fixes and improvements

Personalization

  • β€’Customized content recommendations
  • β€’Personalized user experience
  • β€’Targeted content delivery
  • β€’User preference settings

Communications

  • β€’ Service updates and announcements
  • β€’ Customer support responses
  • β€’ Marketing communications (with consent)
  • β€’ Important account notifications

Security & Compliance

  • β€’ Fraud detection and prevention
  • β€’ Security monitoring
  • β€’ Legal compliance requirements
  • β€’ Platform safety measures

Advertising & Marketing

  • β€’ Relevant advertising delivery
  • β€’ Marketing campaign effectiveness
  • β€’ Promotional content targeting
  • β€’ Partner integrations

Data Sharing and User Control

Your Data Collection Choices

Required Data

Name, email, and user IDs are required for core app functionality and cannot be turned off.

Optional Data

Address, phone number, and other personal information can be provided at your discretion.

Data Sharing Practices

  • β€’ We share data with trusted service providers for app functionality
  • β€’ Analytics partners help us improve our services
  • β€’ Advertising partners deliver relevant content
  • β€’ We never sell your personal data to third parties

Data Processing and Storage

Your data is not processed ephemerally β€” we retain it to provide continuous service and maintain your account. All data transmission is encrypted for security.

βœ“ Encrypted Transitβœ“ Secure Storageβœ“ User Control

Account and Data Deletion

Request Account Deletion

You have the right to request deletion of your account and associated data. We provide an easy-to-use account deletion process directly in our app settings.

Account Deletion URL:

https://public.kim/delete-account-info

Visit this link to learn about the account deletion process and permanently delete your account.

Log Files

Public follows a standard procedure of using log files. These files log visitors when they visit websites. The information collected includes IP addresses, browser type, ISP, date and time stamp, referring/exit pages. These are not linked to any personally identifiable information.

Cookies and Web Beacons

Like any other website, Public uses "cookies" to store information including visitors' preferences, and the pages on the website that the visitor accessed or visited.

The information is used to optimize users' experience by customizing our web page content based on visitors' browser type and/or other information.

Advertising Partners

Some advertisers on our site may use cookies and web beacons. Each of our advertising partners has their own Privacy Policy for their policies on user data.

Google

Google uses DART cookies to serve ads based upon visits to our website and other sites on the internet.

Google Privacy Policy β†’

Your Privacy Rights

CCPA Privacy Rights (California)

  • β€’ Request disclosure of personal data categories collected
  • β€’ Request deletion of your personal data
  • β€’ Opt-out of personal data sales

GDPR Data Protection Rights (EU)

  • β€’ Right to access your personal data
  • β€’ Right to rectification and erasure
  • β€’ Right to data portability
  • β€’ Right to object to processing

Children's Information

Another part of our priority is adding protection for children while using the internet. We encourage parents and guardians to observe, participate in, and/or monitor and guide their online activity.

Public does not knowingly collect any Personal Identifiable Information from children under the age of 13. If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately.

Contact Us

If you have any questions or suggestions about our Privacy Policy, do not hesitate to contact us.

We have one month to respond to your privacy-related requests.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. These changes are effective immediately after they are posted on this page.