https://simplyincluded.com/privacy

Privacy Policy

SimplyIncluded. Last updated: May 2026.
What we collect

When you sign in with Kick OAuth, we receive your Kick username and channel identifier. We store this to associate your account with your caption settings. We do not receive your Kick password.

If you paste API keys for DeepL or Deepgram, those keys are encrypted immediately on our server before being stored. We store the encrypted form only. We display the last four characters so you can identify which key is saved.
How we store it

Your account data and encrypted API keys are stored on servers in the United States (Fly.io infrastructure). Keys are encrypted at rest using libsodium symmetric encryption. The encryption master key is stored as an environment secret, separate from the database.
What we do not do

We do not sell your data. We do not share your API keys with any third party. We do not log the content of your keys at any time. We do not send your keys to viewers or to any client-facing response.
API calls made on your behalf

When captions are active, your Deepgram key is used to transcribe audio from your stream tab. Your DeepL key is used to translate transcripts into the languages your viewers have selected. These calls are made from our server using your key. Your key never leaves our server's process memory during a call.
Data deletion

To delete your account and all associated data, email simplyincluded@gmail.com with the subject "Delete my SimplyIncluded account." We will remove your record and encrypted keys within 7 days.
Contact

Questions about this policy: simplyincluded@gmail.com