Privacy Policy

1. Data collected

• Authentication data (Google OAuth): Google user identifier (google_id), email address, full name, and avatar URL.
• Platform usage data: User-submitted inputs, system outputs, selected settings, and relevant events logged for audit purposes.
• Operational data (future products): If operational modules are enabled, data related to user or organization activity may be collected, limited to what is strictly necessary to provide the service.
• Technical logs: Server and database logs that may include IP address and request metadata, retained for approximately three (3) months.

2. Use of data

• User authentication and access management to the platform.
• Operation, maintenance, and improvement of the services.
• Security, auditability, and system integrity.
• Error diagnostics and reliability verification.

3. Account lifecycle

Accounts are not deleted by default, except where required by applicable law or a valid request. Accounts may be disabled or restricted to preserve historical integrity, auditability, and system consistency.

4. Data retention

Application-level data may be modified or deleted depending on service functionality, granted permissions, and legal requirements. Technical logs are retained for approximately three (3) months.

5. Data sharing

Personal data is not sold. Data may be processed by infrastructure providers strictly necessary to operate the platform, under appropriate security safeguards.

6. Security

Reasonable technical and organizational measures are applied to protect data. No system is completely risk-free; the platform is designed with a focus on access control and traceability.

7. Changes

This policy may be updated as services evolve. Changes will be reflected on this page.