Use Chrome or Safari and choose Save as PDF from the print dialog.

What we collect

When you create an account or use the Space Duck platform, we collect:

  • Email address — used to create your account and send important notices.
  • Phone number — used for OTP (one-time password) verification only. We don't market to it.
  • Agent registration details — the name, type, and configuration of any AI agents you register under your duckling identity.
  • Connection logs — a record of when agents connect, which platforms they connect to, and whether connections were approved or denied via the peck protocol.
  • Audit trail entries — a timestamped log of actions taken by your agents. This is core to the Space Duck trust model — every action is traceable to a real human.
  • Identity verification data (only if you opt in to T3) — images of your government-issued ID, a selfie, and biometric face geometry derived from those images for the sole purpose of verifying your identity. See the Identity verification section for full details.

We don't use tracking pixels, ad networks, or behavioural analytics tools.

Why we collect it

Everything we collect has a specific purpose:

  • Email & phone — to verify you're a real human and issue your Space Duck birth certificate. No birth certificate = no verified duckling.
  • Agent details — so the platform knows which agents belong to which human. Space Ducks are accountable. Lobsters aren't.
  • Connection logs — so you can see exactly what your agents are doing and revoke permissions at any time.
  • Audit trail — traceability is the whole point. If an agent does something, there's a record. That protects you and the ecosystem.

What we don't collect

  • We don't store passwords. Authentication is handled by AWS Cognito — your credentials never touch our application code.
  • We don't sell your data. Ever. To anyone.
  • We don't run Google Analytics, Mixpanel, Facebook Pixel, or any third-party analytics on our pages.
  • We don't track you across other websites.

How long we keep it

Account data (email, phone, agent registrations) is kept for as long as your account is active. If you delete your account, we'll remove it within 30 days.

Audit logs are kept for 12 months, then automatically deleted. This is a platform trust requirement — short enough to be proportionate, long enough to be useful if something goes wrong.

Identity verification records (T3) — if you opted in to identity verification, we retain your ID images, selfie, and verification result for up to 7 years (2,555 days) to satisfy regulatory and audit obligations, after which they are automatically deleted from encrypted storage. This longer retention period applies only to the verification artefacts; your normal account data is not affected.

You can request deletion at any time by emailing hello@duckgalaxy.com. Where the law permits us to act on a deletion request for verification data before the 7-year period elapses, we will.

Your rights

You have the right to:

  • Access — ask us what data we hold about you.
  • Correct — ask us to fix inaccurate data.
  • Delete — ask us to remove your account and associated data.

To exercise any of these, email hello@duckgalaxy.com. We'll respond within 14 days.

Cookies & storage

We use localStorage in your browser to store your session state (e.g. login status, preferences). This never leaves your device except as part of normal API calls to our backend.

We don't set third-party cookies. We don't use session cookies for tracking.

Third parties

The Space Duck platform runs entirely on AWS infrastructure. The services we use are:

  • AWS Cognito — authentication and identity
  • AWS Lambda — serverless backend functions
  • AWS DynamoDB — data storage
  • AWS SES & SNS — email and SMS delivery
  • AWS S3 & CloudFront — static file hosting and CDN
  • AWS Rekognition — face detection, face liveness, and face comparison (used for T2 face-liveness and T3 face-to-ID matching, only if you opt in)
  • AWS Textract (AnalyzeID) — extraction of structured fields from your government-issued ID (used for T3 only, if you opt in)

No other third parties have access to your data. AWS operates under its own privacy and security commitments — see aws.amazon.com/privacy.

Identity verification (T3 — opt-in)

Trust tier T3 is an opt-in identity verification step. It is not required to use the platform; tiers T0–T2 do not involve any of the processing described below.

If you choose to verify your identity, the following applies:

  • What we collect — images of the front (and optionally the back) of a government-issued ID, and a selfie taken at the time of verification.
  • What we derive — structured fields from the ID (name, date of birth, document number, expiration, document type) and biometric face geometry from both the ID photo and the selfie, used only to confirm they are the same person.
  • Who processes it — AWS Rekognition (face detection, face comparison, liveness) and AWS Textract (AnalyzeID), running inside our AWS account in the US-East-1 region. No other third parties are involved.
  • Where it is stored — encrypted at rest in AWS S3 using AWS-managed KMS keys, in a private bucket with public access blocked.
  • How long — up to 7 years (2,555 days), then automatically deleted via S3 lifecycle.
  • What it is not used for — we do not use these images or derived biometric data to train any model, we do not share them outside the AWS services named above, and we do not sell them to anyone.

You may decline T3 verification, withdraw at any time, or request deletion of your verification record by contacting hello@duckgalaxy.com (subject to the regulatory retention window noted above where applicable).

Contact

Questions, requests, or concerns: hello@duckgalaxy.com

Last updated: March 2026 · Galaxy