Privacy Policy
Last updated: March 24, 2026
Our Commitment
OrganicRSS is built on a simple principle: your reading experience is yours alone. We do not track your behavior, sell your data, or use algorithms to manipulate what you see. This policy explains exactly what data we collect, why, and how we protect it.
Data We Collect
Account Information
When you create an account, we store your name, email address, and a securely hashed version of your password. If you sign in with a third-party provider (Google, GitHub, or Microsoft), we store the provider's account identifier and associated email.
Reading Preferences & Subscriptions
We store your feed subscriptions, folder organization, read/saved article status, and display preferences (theme, font size, dark mode).
Session Information
For security purposes, we record the browser type and host of each active login session. This allows you to view and revoke individual sessions from your settings.
Cookies & Local Storage
We only use cookies that are strictly necessary for the application to function. We do not use any tracking, analytics, or advertising cookies.
| Name | Purpose | Duration | Type |
|---|---|---|---|
authToken | Keeps you logged in | 30 minutes | Essential |
refreshToken | Renews your session automatically | 30 days | Essential |
sidebar:state | Remembers sidebar open/closed preference | 7 days | Functional |
We also use your browser's local storage to remember your sidebar width preference and whether you've dismissed the cookie notice. No data from local storage is sent to our servers.
How We Protect Your Data
- • Passwords are hashed using bcrypt and never stored in plain text.
- • Authentication cookies are HTTP-only and secure, preventing access from JavaScript and ensuring encrypted transmission.
- • We do not share, sell, or provide your data to any third party.
- • All communication between your browser and our servers is encrypted via HTTPS.
Your Rights
- • Access: You can view all data associated with your account through the application.
- • Export: You can export your feed subscriptions at any time via OPML export.
- • Deletion: You can request complete deletion of your account and all associated data by contacting us.
- • Sessions: You can view and revoke active login sessions from your settings at any time.
Contact
If you have any questions about this privacy policy or your data, please contact us at hello@organicrss.com.
OrganicRSS - Information on your terms