Privacy

What we collect, why, and what we don't.

Last updated May 10, 2026.

Capitalism Killed Software is a small consultancy that helps people escape software they no longer trust. Running the site with the same standards we'd ask of one of our clients means being specific about what we collect rather than waving at it vaguely — honest disclosure is the only kind we'd accept from a vendor, and it's the only kind we ship.

What we collect

Three categories of data, and nothing else.

  1. What you submit through a form. When you sign up for the newsletter, write through the contact form, apply to a community program, or ask to be notified about an in-person session, we record the email address you give us, your name if you provide one, and the contents of the form. We also record the IP address the submission came from and your browser's user-agent string. Both are kept for spam investigation only and are not used for analytics or profiling.
  2. Two cookies. A session cookie that lets you stay signed in to the client portal or the admin tools if you have an account, and a dark-mode preference cookie that remembers whether you asked the site to render light or dark. The session cookie is HTTPOnly + Secure + SameSite. The dark-mode cookie holds a single string value (light or dark) and nothing else. We do not set a third cookie of any kind.
  3. Files you upload. If you become a client and upload a file through the portal, that file is stored on Backblaze B2 in the EU. We don't read your files opportunistically; the operator opens them when responding to whatever you sent them.

What we don't collect

We run no analytics, no tracking pixels, no fingerprinting, no session recording, no third-party advertising, and no first-party advertising either. The site sets no trackers and embeds no third-party JavaScript at runtime. Fonts come from Bunny Fonts (EU-hosted, no logging, no cookies). There is no Google, no Meta, no Microsoft, no Cloudflare beyond DDoS protection at the network edge.

Crypto invoicing means we do not use any payment processor. Bitcoin, Monero, USDC, and USDT transactions go directly on-chain; no third-party sees your card number because there is no card number.

Where your data goes

Two third-party processors handle limited slices of the data on our behalf, and only those two:

  • Resend delivers transactional email — form-submission confirmations, portal magic-link sign-in emails, and invoices. Resend sees the recipient's email address and the message body.
  • Backblaze B2 stores files you upload through the client portal. Backblaze sees only the file's contents and metadata.

Application data otherwise lives on Render's EU-region Postgres database. Render is the application host; the operator is migrating to a self-hosted EU deployment as the consultancy scales.

How long we keep it

Form submissions are retained indefinitely so we can respond to follow-up questions and so the operator has a record of who wrote when. Newsletter subscribers stay on the list until they unsubscribe; once you unsubscribe we keep the email address flagged as opted-out so we don't accidentally re-add you. Client portal sessions expire automatically; magic-link tokens are single-use and time out within fifteen minutes.

Your rights

If you're on the newsletter, you can leave any time at /unsubscribe — the link in the footer of every confirmation email points there too. If you'd like the operator to delete the rest of your data, including any form submissions you've made and any portal data, write us at hello@capitalismkilledsoftware.com and we'll act on the request within five business days.

Questions

If anything on this page is unclear, or if you'd like to know what we hold about a specific email address, write us at hello@capitalismkilledsoftware.com. The operator reads every message.