Privacy Policy
Effective Date: July 9, 2026
This Privacy Policy explains how Kampus Filter (“Kampus Filter,” “we,” “us,” or “our”) collects, uses, stores, and protects information when you visit our website or use our services (collectively, the “Platform”). We designed this Platform to require as little personal information as possible. There are no user accounts, no login, and no user dashboard — meaning the vast majority of your interaction with Kampus Filter involves no personal data collection at all.
This policy applies to all visitors, readers, and subscribers of Kampus Filter.
1. Information We Collect
We collect information in three general ways: (a) information you voluntarily provide to us, (b) information collected automatically through your use of the Platform, and (c) information collected through third-party service providers acting on our behalf.
1.1 Newsletter Data
If you choose to subscribe to our newsletter, we collect:
- Name
- Mobile Number
- Email Address
This information is stored using Firebase Firestore, a cloud database service provided by Google. We collect only what is necessary to deliver newsletter content and, where applicable, to personalize communications (such as addressing you by name).
Note: Providing a mobile number for the newsletter is used strictly for subscription-related purposes (such as identity verification or SMS-based updates, if enabled) and is never used for cold-calling or unsolicited marketing outside the scope of the newsletter service you signed up for.
1.2 Contact Form Data
When you use any of our contact channels, we collect the information you choose to submit, which may include your name, email address, and the content of your message. This data is used solely to respond to your inquiry and is not used for marketing unless you separately opt into our newsletter.
1.3 Push Notification Tokens
If you opt into browser push notifications, your browser generates a unique device/browser token through Firebase Cloud Messaging (FCM). This token allows us to send notifications to your browser but does not, by itself, reveal your identity, name, or contact details unless you have also subscribed to our newsletter using the same device.
1.4 Analytics Data
We use analytics tools (such as Google Analytics) to understand how visitors use the Platform in aggregate. This may include pages visited, time spent on pages, navigation paths, general geographic location (city/region level, derived from IP address), device type, and screen resolution. Analytics data is aggregated and not used to individually identify you.
1.5 Cookies
We use cookies and similar tracking technologies as described in our Cookie Policy. Cookies may be used for essential site functionality, analytics, and preference storage.
1.6 Device & Browser Information
We may automatically collect information about the device you use to access the Platform, including device type, operating system, browser type, version, and screen size, primarily for the purpose of ensuring the site displays and functions correctly.
1.7 IP Address
Your IP address may be logged automatically by our hosting provider (Netlify) and analytics tools for security, fraud prevention, and analytics purposes. We do not use IP addresses to individually track or profile users beyond standard analytics and security functions.
1.8 Referral Information
We may collect information about the website or source that referred you to Kampus Filter (e.g., a search engine, social media platform, or another website), primarily for analytics purposes.
2. How Information Is Used
We use the information described above for the following purposes:
- To deliver our newsletter to subscribers who have opted in.
- To send push notifications to users who have opted in.
- To respond to inquiries submitted through our contact channels.
- To operate, maintain, and improve the Platform, including diagnosing technical issues.
- To understand aggregate usage patterns through analytics, helping us decide what content to create and how to improve the user experience.
- To maintain security, including detecting and preventing fraud, abuse, and unauthorized access.
- To comply with legal obligations, where applicable.
We do not sell personal data to third parties. We do not use your personal data for purposes unrelated to the ones described in this policy without obtaining your consent.
3. How Information Is Stored
- Newsletter subscriber data (name, mobile number, email address) is stored in Firebase Firestore, a Google Cloud-based NoSQL database, secured through Firebase's access control and encryption mechanisms.
- Push notification tokens are managed through Firebase Cloud Messaging.
- Article content and platform data are stored in Turso, a distributed SQLite-based database service.
- The Platform itself is hosted on Netlify, which provides content delivery, hosting infrastructure, and edge network services.
4. Data Security
We take reasonable technical and organizational measures designed to protect the information we hold, including:
- Use of reputable, security-audited third-party infrastructure providers (Firebase/Google Cloud, Netlify, Turso).
- Encryption of data in transit via HTTPS/TLS across the Platform.
- Access restrictions limiting who within our organization can access stored personal data.
- Regular review of our data handling practices as the Platform evolves.
No method of transmission or storage is 100% secure, and we cannot guarantee absolute security. However, we are committed to promptly investigating and addressing any suspected data security incident.
5. Data Retention Policy
We retain personal data only as long as necessary for the purposes described in this policy, or as required by law:
- Newsletter Data: Retained until you unsubscribe. Upon unsubscribing, your details are marked inactive and purged from our production databases within 30 days.
- Contact Form Submissions: Retained for a maximum of 180 days to resolve support issues, after which they are deleted.
- Push Notification Tokens: Firebase FCM tokens automatically expire or become invalid when you uninstall the app or clear browser storage. We purge inactive tokens periodically.
- Analytics Logs: Google Analytics user and event data is set to automatically expire after 14 months.
6. Push Notification Policy
Push notifications require your explicit browser-level permission. You will be prompted by your browser to allow or deny notifications from Kampus Filter; we cannot send notifications unless you grant this permission.
Once permission is granted, your browser generates a unique token via Firebase Cloud Messaging, which we use to deliver notifications to your device.
7. Third-Party Services
We rely on the following third-party service providers, each of which has its own privacy practices:
- Firebase (Google): Used for newsletter data storage (Firestore) and push notification delivery (Cloud Messaging). Firebase is operated by Google LLC and is subject to Google's privacy and security practices.
- Netlify: Used for website hosting and content delivery. Netlify may log standard web request data, including IP addresses, as part of its infrastructure operations.
- Turso: Used for storing article and platform content (not personal subscriber data). Turso is a distributed database service built on libSQL/SQLite technology.
- Google Analytics: Used for aggregate website usage analytics.
8. International Data Transfers
Because we rely on globally distributed infrastructure providers, your information may be processed or stored in countries other than your own, including the United States. Where required by applicable law, we rely on appropriate safeguards, such as standard contractual clauses offered by our infrastructure providers, to protect data transferred internationally.
9. Your Rights
Depending on your jurisdiction, you may have some or all of the following rights regarding your personal data:
- Right to access: request a copy of the personal data we hold about you.
- Right to correction: request that inaccurate or incomplete data be corrected.
- Right to deletion: request that we delete your personal data.
- Right to withdraw consent: unsubscribe from the newsletter or disable push notifications at any time.
- Right to lodge a complaint: with your local data protection authority, if you believe your rights have been violated.
To exercise any of these rights, please contact us through our Privacy Requests contact email.

