Privacy Policy

Last updated: January 17, 2026

⚠️ Portfolio Demo Project
This is a demonstration project for portfolio purposes only. This application is not intended for production use. User data may be deleted without notice. Please do not use real, sensitive, or important passwords.
Introduction

This Privacy Policy explains how we collect, use, and protect your information when you use our Chat application. By using this service, you agree to the collection and use of information in accordance with this policy.

Information We Collect

We collect the following types of information:

  • Account Information: Username and password (stored encrypted using BCrypt hashing)
  • Chat Data: Messages you send and receive, including conversation history
  • Authentication Tokens: JWT tokens stored in your browser's local storage
  • Technical Data: Browser type, access times, and IP addresses (automatically collected by server logs)
How We Use Your Information

Your information is used for:

  • Service Operation: Authenticating users and managing chat sessions
  • AI Processing: Your messages are sent to Google's Gemini API to generate AI responses
  • Service Improvement: Understanding how users interact with the application
Third-Party Services

We use the following third-party services:

  • Google Gemini API: Your chat messages are sent to Google's Gemini AI service to generate responses. Google's privacy policy applies to this data processing. We recommend reviewing Google's Privacy Policy.

We do not control these third-party services and are not responsible for their privacy practices.

Data Storage and Security
  • Database: User data is stored in a secure database
  • Password Security: Passwords are hashed using BCrypt before storage
  • JWT Tokens: Authentication tokens have a 10-hour expiration
  • Data Retention: As a demo project, data may be deleted at any time without notice

While we implement security measures, no method of transmission over the internet is 100% secure. Use this service at your own risk.

Your Rights

You have the right to:

  • Access: Request access to your personal data
  • Deletion: Request deletion of your account and associated data
  • Correction: Request correction of inaccurate data
  • Data Portability: Request a copy of your data in a machine-readable format

To exercise these rights, please contact us using the information below.

GDPR Compliance (EU Users)

If you are located in the European Union, you have additional rights under GDPR:

  • Right to be informed about data collection
  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
Children's Privacy

This service is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Your continued use of the service after changes constitutes acceptance of the updated policy.

Contact Us
If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us at:
tzifkasgiorgos@gmail.com
← Back to Sign In
© 2026 Cryptologic. All rights reserved.