I am very aware (perhaps hyperaware!) of online privacy. Therefore, all of the programs I use to communicate with you are as privacy-focused as possible. I provide links to programs so you can read more, and I gain no financial benefits from you reading more.
I am not endorsing any of these products. They are doing the job I need them to do based on my threat model.
| Service | What It's Used For | How Your Privacy Is Protected | What Information It Receives About You |
|---|---|---|---|
| Ivy Pay | Financial contribution collection | HIPAA-compliant with a signed Business Associate Agreement. Data encrypted in transit and at rest. PCI-DSS compliant for payment security. | Your name, phone number, and payment card information |
| NextcloudSelf-hosted | Forms, hosting this site, e-signing | Runs on my own server — no third party ever touches your data. No ads, no tracking, no data selling. | Only what you directly provide: form responses, signed documents |
| Nextcloud Talk | Privacy-first virtual meetings | Self-hosted on my own server. End-to-end encrypted calls. No third party ever touches your data. | Only what you directly provide during the call; no usage data leaves my server |
| Proton Calendar | Calendar and scheduling | End-to-end encrypted. Event titles, descriptions, locations, and attendees are encrypted — even Proton cannot read them. Based in Switzerland under strong privacy laws. | Event start/end times and recurrence rules (needed to send notifications); all other event details are encrypted |
| Proton Drive | Shared document folder between us | End-to-end encrypted. Proton cannot read the contents of your files. Based in Switzerland under strong privacy laws. | Your email address (to share the folder); file metadata (names, sizes, timestamps) |
| Proton Mail | Email communication | End-to-end encrypted between Proton users. Zero-access encryption means even Proton cannot read your emails. No ads, no tracking. | Your email address, message content, and metadata (sender, recipient, timestamps) |
| Proton Meet | Default virtual meetings | End-to-end encrypted using Messaging Layer Security (MLS). Proton cannot access call contents. No tracking, no data collection, no AI training. | Minimal metadata; call contents are fully encrypted and inaccessible to Proton |
| SignalSecure messaging | Preferred between-session communication | End-to-end encrypted by default. Open source and independently audited. Signal cannot read your messages. Messages can be set to auto-delete. | Your phone number; the date you registered; the date you last connected. That's it. |
| SpruceSMS | Non-sensitive text communication | HIPAA-compliant. Data encrypted in transit and at rest. Does not sell personal information. | Your phone number, message content, and usage data (IP address, device info, visit details) |
| Zoom | Accessible virtual meetings | Data encrypted in transit. Zoom does not sell personal data or use it to train AI. Real-time captions are not accessible to Zoom. | Usage metadata: who met with whom, when, duration, device info, IP address. Subject to US law. |
AI usage: The table on this page was researched and written by claude.ai based on each service's published privacy policies and documentation. Dr. Perri reviewed and approved the content. As with the rest of this site, all final decisions about what to include were Dr. Perri's.