Privacy Policy
Last updated: April 12, 2026
1. Our Core Principle
CHETNA Technologies is built on a fundamental privacy guarantee: your original text never leaves your device. All text normalization and SHA-512 hashing happens entirely in your browser or our SDK before anything is transmitted. Our servers only receive one-way cryptographic hashes that cannot be reversed to recover the original text.
2. What We Collect
Hash Data (CHETNA Registry)
- SHA-512 hashes of normalized text (irreversible)
- SimHash fingerprints for similarity search
- Normalization configuration flags
- Category labels you choose to assign
- Submission timestamps and hit counts
Account Data
- Email address (for authentication and communication)
- Profile information you choose to provide (name, company, etc.)
- OAuth provider data (if you sign in via GitHub)
Technical Data
- IP address (hashed, for rate limiting — not stored in plaintext)
- API usage metrics (request counts, timestamps)
3. What We Do NOT Collect
- Your original text, thoughts, or ideas — ever
- Browsing history or tracking cookies
- Device fingerprints or advertising identifiers
- Location data
- Contact lists or personal files
4. How We Use Your Data
- To operate the CHETNA Registry (hash storage, hit counting, similarity search)
- To authenticate your account and manage API keys
- To enforce rate limits and prevent abuse
- To send transactional emails (verification, welcome) — no marketing emails
- To process payments if you upgrade to a paid plan (via Stripe)
5. Data Storage & Security
Data is stored on Neon (PostgreSQL) with encryption at rest and in transit. API keys are stored as SHA-256 hashes — we never store your raw API key. All connections use TLS 1.3. Security headers (CSP, HSTS, X-Frame-Options) are enforced on every response.
6. Third-Party Services
| Service | Purpose | Data Shared |
|---|---|---|
| Vercel | Hosting | HTTP requests |
| Neon | Database | Hashes, accounts |
| Upstash | Rate limiting | Hashed identifiers |
| Resend | Email delivery | Email addresses |
| Stripe | Payments | Billing info (managed by Stripe) |
7. Your Rights
- Access: View all data associated with your account via the Account page
- Deletion: Request complete account and data deletion by emailing us
- Export: Download your registry data via the API
- Revocation: Revoke API keys instantly from the Account page
8. Mobile App
The CHETNA mobile app (iOS and Android) follows the same privacy principles. All hashing is performed on-device using the device's native cryptography. The app stores your API key and server URL in the device's secure keychain (iOS Keychain / Android Keystore). No analytics SDKs, trackers, or advertising libraries are included.
9. Open Source Verification
CHETNA is open source under the AGPL-3.0 license. You can audit every line of code that handles your data at github.com/shuchauha-netizen/chetna.
10. Contact
For privacy questions or data requests, contact us at chetna@chetnatech.com.