undefined | Better HN

0 pointsbrandon2722y ago0 comments

Kagi does not log and associate searches with an account.

0 comments

SanderNL2y ago

Unless you work at Kagi I am not taking that too seriously.

Cu3PO422y ago

I don't Work at Kagi either, but I can ready their Privacy Policy: https://kagi.com/privacy

> Searches are anonymous and private to you. Kagi does not log and associate searches with an account.

They also double down on this in their FAQ: https://help.kagi.com/kagi/company/faqs.html#i-am-still-worr...

I find their reasoning solid and choose to believe them (for now).

jefozabuss2y ago

As you mentioned they don't track (for now).

I mean anyone can write anything into a privacy policy and who will enforce they are sticking to them really? Usually we only see what actually happens in the background when there is a breach.

For financial systems we have regular audits so rules like PCI DSS are enforced, but do we have these for search systems?

dijit2y ago

> I mean anyone can write anything into a privacy policy and who will enforce they are sticking to them really?

Dunno, but a "decent" chunk of my time went into vetting our privacy policy for my company because it is something we could be sued over.

So at least lawyers are taking it very seriously.

cowthulhu2y ago

It looks like their privacy policy backs this up. It’s also written in plain English, which I adore.

“Searches are anonymous and private to you. Kagi does not log and associate searches with an account.”

https://kagi.com/privacy

exitb2y ago

Not so plain. We do not (log AND associate), or we do not log AND we don’t associate? Am I supposed to believe that if their backend crashes after a user query, that can’t tell what has been queried?

bthrn2y ago

" Kagi does not log and associate searches with an account."

> Am I supposed to believe that if their backend crashes after a user query, that can’t tell what has been queried?

I'm sure they'll know the query. They just won't know which user made the query.

1 more reply

TisButMe2y ago

I do, we don't log searches.

SanderNL2y ago

So if the feds stop by you have nothing to hand over. That sounds great, but legally dubious. Aren't you required to keep a log?

Thanks for the info nonetheless. I think I'll give it a shot and maybe don't look up how to get rid of bodies - for a friend. Oh, damn, did it again.

outime2y ago

IANAL nor close to it but is there any legal requirement in the US to keep logs avoid user activity besides access logs? I'd be surprised that the US federal law forces you to keep a full activity log so that they can take a look later for some reason.

1 more reply

gassiss2y ago

For that kind of risk profile, you can't have an account anywhere (not even HN), nor a cell phone

rany_2y ago

That still requires a leap of faith to a relatively small company. Even if true, they could always secretly activate logging without your knowledge.

slikrick2y ago

or get bought out by an advertising agency

j / k navigate · click thread line to collapse

0 comments

SanderNL2y ago

Unless you work at Kagi I am not taking that too seriously.

Cu3PO422y ago

I don't Work at Kagi either, but I can ready their Privacy Policy: https://kagi.com/privacy

> Searches are anonymous and private to you. Kagi does not log and associate searches with an account.

They also double down on this in their FAQ: https://help.kagi.com/kagi/company/faqs.html#i-am-still-worr...

I find their reasoning solid and choose to believe them (for now).

jefozabuss2y ago

As you mentioned they don't track (for now).

I mean anyone can write anything into a privacy policy and who will enforce they are sticking to them really? Usually we only see what actually happens in the background when there is a breach.

For financial systems we have regular audits so rules like PCI DSS are enforced, but do we have these for search systems?

dijit2y ago

> I mean anyone can write anything into a privacy policy and who will enforce they are sticking to them really?

Dunno, but a "decent" chunk of my time went into vetting our privacy policy for my company because it is something we could be sued over.

So at least lawyers are taking it very seriously.

cowthulhu2y ago

It looks like their privacy policy backs this up. It’s also written in plain English, which I adore.

“Searches are anonymous and private to you. Kagi does not log and associate searches with an account.”

https://kagi.com/privacy

exitb2y ago

bthrn2y ago

" Kagi does not log and associate searches with an account."

> Am I supposed to believe that if their backend crashes after a user query, that can’t tell what has been queried?

I'm sure they'll know the query. They just won't know which user made the query.

1 more reply

TisButMe2y ago

I do, we don't log searches.

SanderNL2y ago

So if the feds stop by you have nothing to hand over. That sounds great, but legally dubious. Aren't you required to keep a log?

Thanks for the info nonetheless. I think I'll give it a shot and maybe don't look up how to get rid of bodies - for a friend. Oh, damn, did it again.

outime2y ago

1 more reply

gassiss2y ago

For that kind of risk profile, you can't have an account anywhere (not even HN), nor a cell phone

rany_2y ago

That still requires a leap of faith to a relatively small company. Even if true, they could always secretly activate logging without your knowledge.

slikrick2y ago

or get bought out by an advertising agency

j / k navigate · click thread line to collapse