Kagi
Privacy-Focused Search Engine.
Score
Citation
We do not share customer data with third parties, except as needed to perform explicitly accessed services. In those cases, we will share the minimum amount of data needed to provide the service, and will do so in an anonymous way.
We do not display any ads, or have any first-party or third-party tracking in service of ads.
Kagi does not store your IP address or any association with other user data. We perform an offline lookup using a database to resolve the IP address that your client sends to us in to a location with enough accuracy to enrich your search experience.
Absent from our logs are any identifying information about your client.
To ensure your privacy and security, we don’t monitor, log or store your queries or associate them with your account.
Even if there is a reasonable delay before the data is fully deleted (as is common), the data still counts as "permanently deleted" and satisfies the parameters for this question.
Score
Citation
There is an option to delete your account.
When you do this, all information and settings related to your account is removed from our database.
Score
Notes
There is no explicit mention of law enforcement access to personal user data. The document focuses on describing Kagi's data practices and privacy protections for users, but does not address law enforcement access or exceptions to their privacy policy.
This may come in the form of outright data sharing or by using local third-party analytics software (such as Google Analytics, which collects a plethora of user information).
Note that whether the policy allows sharing aggregated user data does not affect this question.
If the personal data is encrypted when it passes through the third-party, it does not count as third-party access (as the data is inaccessible to that party).
If personal data has been made public by, for example, posting it to a blog, it does not count as private personal information (and is therefore not considered by this question).
Score
Citation
We do not share customer data with third parties, except as needed to perform explicitly accessed services.
In those cases, we will share the minimum amount of data needed to provide the service, and will do so in an anonymous way.
Data uploaded to allow Kagi to perform a service will be stored and used only to the extent needed to perform said service. This data may be shared with third parties, but only when sharing is required for fulfillment of the service. In these cases, Kagi's servers will be the sole actor communicating (securely) with third parties, and only to the extent required to fulfill your intent.
Anonymous logs are shared with Sentry when bugs, crashes, or warnings that occur for debugging purposes.
Anonymous logs are aggregated with GCP's logging tools, retained for 30 days.
Note that all companies operating in the EU are subject to Art. 33 of the GDPR, which requires companies to notify their data protection authority of a data breach within 72 hours of discovering it.
Score
Notes
The policy doesn't seem to mention a data breach policy.
Score
Citation
Changelog
2023-09-21
Increased Fair Use limits for AI tools (300 to 500)
2023-08-15
Updated Terms of Use (Clarified commercial use licensing)
2023-08-04
Updated Privacy Policy (Clarified summary)
2023-05-24
Updated Privacy Policy (Added Warrant Canary and covered "Labs" experiments such as FastGPT)
2023-05-04
Updated Privacy Policy (Clarified when data is shared with third parties, and to what extent. Added upload section.)
2023-02-29
Updated Privacy Policy (AI Tools & Universal Summarizer)
2023-02-28
Updated Terms of Service (Fair Use Policy for AI Tools)
2022-03-31
Updated Terms of Service
2021-11-30
Added kagi_previous_page cookie to Cookies & Client data table.
2021-09-02
Initial draft.
Score
Citation
Kagi may update these Terms from time to time to address a new feature of the Services or to clarify a provision. The updated Terms will be posted online. If the changes are substantive, we will announce the update through Kagi's usual channels for such announcements such as blog posts and forums. To make your review more convenient, we will post an effective date at the top of this page.
Score
Citation
All Kagi communications - inbound and outbound - are made over encrypted HTTPS.
HTTPS does not protect these other parties from knowing where the request is going, but it does protect the request content.
Passwords are hashed and salted and all passwords are hashed and salted.
To ensure your privacy and security, we don’t monitor, log or store your queries or associate them with your account.
Score
Citation
Kagi only stores the information about the client that you explicitly provide by using your account, as laid out in our interface. This includes: Your email to facilitate account access and support contact (ex: password reset) and Your account settings (ex: theme, search region, selected language)
Score
Citation
Kagi only stores the information about the client that you explicitly provide by using your account, as laid out in our interface. This includes: Your email to facilitate account access and support contact (ex: password reset), Your account settings (ex: theme, search region, selected language) And nothing else.
Some services allow users to opt-out or opt-in to of non-critical collection or use of personal data, such as collecting data for personalized advertisements.
Score
Notes
No data is used for non critical purposes.
There are some limited options for users to control caching, local storage, and account deletion, but do not explicitly mention opting out of non-critical data collection.
Anonymous logs are aggregated with GCP's logging tools, retained for 30 days.
Anonymous logs are shared with Sentry when bugs, crashes, or warnings that occur for debugging purposes.
This includes the use of data brokers and independent verification authorities (such as background check providers).
Score
Notes
The policy does not mention any collection of data from third parties.
Last Updated
October 28, 2023
Sources
Contributors
