Privacy Policy
Kiwi Dials Squawk Metrics, Inc. — a Washington corporation Effective date: April 14, 2026
1. Who we are
Kiwi Dials is operated by Squawk Metrics, Inc. ("Squawk Metrics," "we," "us"), a Washington corporation. This policy explains what personal data we collect, why we collect it, how we use it, and what rights you have over it.
If you have questions, contact us at privacy@kiwidials.com.
2. What data we collect and why
We collect the minimum data necessary to operate the Service. Here is everything we collect, and why.
2.1 Account data
When you create a Kiwi Dials account, we collect:
- Email address — your primary identifier. Used to authenticate you, send you notifications you have requested, and route invitations to your account.
- Display name — used to identify you to people on shared teams. You control what name you provide.
We do not collect your legal name, phone number, address, payment information, date of birth, or any other personal identifiers beyond the above.
2.2 Authentication data
We use Microsoft Entra External ID (a cloud identity service) to authenticate you via email and one-time passcode (OTP). You receive a single-use code at your email address; we verify the code and confirm that you own that address. We do not support password-based login and do not store passwords. We do not store provider-internal identifiers in any user-facing context.
2.3 Vote data
When you submit a response on a dial, we store:
- The dial identifier
- Your response value on a numeric scale (the range is configured per team)
- The timestamp of the response
- The team the response was submitted in
Responses are not stored directly against your account. Instead, each member is assigned a randomly generated anonymous token per team — an identifier with no inherent connection to your identity. Responses are stored against this token, not your member record. The same member holds a different token on each team, so your signal on one team cannot be correlated with your signal on another. The mapping between your account and your tokens is stored separately from the vote data itself; when you delete your account, that mapping is permanently removed, and your historical responses become permanently unattributable to any individual.
Responses are never displayed to other users on an individual basis. Other users see only aggregate scores and a count of contributing respondents — never who responded or what any individual submitted.
2.4 Team membership data
We store which teams you belong to, your role within those teams, and invitation history associated with your account.
2.5 Usage and technical data
We collect standard technical data necessary to operate the Service: IP addresses, device type, operating system, and session activity. This data is used for security, debugging, and service reliability. It is not used to build advertising profiles.
We use functional cookies and session tokens to keep you signed in. We do not currently use third-party analytics cookies or advertising trackers. If this changes, we will update this policy before doing so.
3. How we use your data
We use the data described above to:
- Operate and deliver the Service
- Authenticate you and maintain your session
- Display aggregated scores to you and your team members
- Send notifications you have requested (invitations, security alerts, account events)
- Detect and prevent abuse, fraud, and security incidents
- Analyze the aggregated, anonymized response stream using automated methods to detect patterns, trends, and significant shifts in engagement signals. This analysis operates on the anonymized vote stream only — it does not correlate signal values with individual identities, account information, or any personal data.
- Improve and develop the Service
We do not use your vote data, engagement scores, or team membership to serve advertising. We do not sell your personal data to any third party.
4. How we share your data
We share your data only in the following circumstances:
Infrastructure providers. We operate on Microsoft Azure. Your data is stored and processed on Azure infrastructure in accordance with Microsoft's data processing terms. Azure acts as a data processor on our behalf.
Other service providers. We may use additional vendors for functions such as email delivery. Any such vendor is contractually limited to processing your data only as necessary to provide the service to us.
Legal requirements. We may disclose data if required to do so by law, regulation, or valid legal process, or to protect the rights, property, or safety of Squawk Metrics, our users, or others.
Business transfers. If Squawk Metrics is acquired or merges with another entity, your data may transfer as part of that transaction. We will notify you before your data becomes subject to a materially different privacy policy.
We do not share individual vote data with team administrators, employers, or any other party. Administrators see the same aggregate scores that all team members see.
5. Data retention
We retain your account data and vote history indefinitely while your account is active. Longitudinal tracking over time is a core function of the Service, and discarding historical votes would undermine that value.
If you delete your account, we will remove your personal data from active systems within 30 days, subject to any legal obligation to retain certain records. Historical aggregate scores that do not identify you individually may be retained.
6. Children's privacy
The Service is not directed at children under 13. We do not knowingly collect personal data from anyone under 13. If we become aware that we have collected data from a child under 13, we will delete it promptly. If you believe we have collected such data, contact us at privacy@kiwidials.com.
7. Security
We implement technical and organizational measures appropriate to the sensitivity of the data we hold. Because we collect minimal personal data — primarily an email address and a stream of numeric engagement responses — the risk profile of a data exposure is limited compared to services that collect financial, health, or behavioral data.
That said, no system is perfectly secure. Because authentication relies on email delivery of one-time codes, the security of your account depends in part on the security of your email inbox. We encourage you to keep your email account secure and to notify us promptly at privacy@kiwidials.com if you suspect unauthorized access to your Kiwi Dials account.
8. International transfers
Kiwi Dials is operated from Washington State, United States. If you access the Service from outside the United States, your data will be transferred to and processed in the US on Azure infrastructure.
If you are located in the European Economic Area, the United Kingdom, or Switzerland, please be aware that the US does not provide the same level of data protection as your home jurisdiction. We rely on your consent, given at account creation, as the transfer mechanism for this processing. You may withdraw consent by deleting your account, though this will end your ability to use the Service.
9. Your rights
Depending on where you live, you may have some or all of the following rights regarding your personal data:
- Access — request a copy of the data we hold about you
- Correction — request that inaccurate data be corrected
- Deletion — request that your data be deleted
- Export — request your data in a portable format
- Objection — object to certain types of processing
- Restriction — request that we limit how we process your data
To exercise any of these rights, contact us at privacy@kiwidials.com. We will respond within 30 days. We may ask you to verify your identity before processing a request.
If you are located in the EEA or UK and believe we have not handled your data in accordance with applicable law, you have the right to lodge a complaint with your local data protection supervisory authority.
10. Legal bases for processing (EEA and UK users)
If you are located in the European Economic Area or the United Kingdom, we process your personal data on the following legal bases:
| Processing activity | Legal basis |
|---|---|
| Creating and maintaining your account | Consent (given at account creation) |
| Storing and aggregating your votes | Consent |
| Sending security and account notifications | Legitimate interests (account security) |
| Detecting and preventing abuse | Legitimate interests (service integrity) |
| Operating and improving the Service | Legitimate interests (operating a functional service) |
You may withdraw consent at any time by deleting your account. Withdrawal does not affect the lawfulness of processing before withdrawal.
We do not currently have a formal EU representative or a Data Processing Agreement available for organizational use. If your organization requires these before using the Service, please contact us at privacy@kiwidials.com before creating an account.
11. Changes to this policy
We may update this policy from time to time. When we do, we will update the effective date at the top of this page. For material changes, we will notify you through the Service or by email. Your continued use of the Service after a change is posted constitutes acceptance of the updated policy.
12. Contact
Squawk Metrics, Inc. 18564 Cascade View Dr Mount Vernon, WA 98274 privacy@kiwidials.com