Privacy Policy
DigestOps is the data controller for personal data processed here. Plain-English answers to anything below: [email protected].
1. What we collect
- Reading — nothing personal: no ad trackers, no behavioural profiling
- Account — your email and DigestOps identity reference, kept to run your account and API keys
- API usage — request counts and quota state per key, kept to enforce plans and spot abuse
- Billing (Pro) — handled by our payment provider on its own systems; we receive order metadata (email, plan, amount), never card details
- Server logs — IP, user agent, timestamp, kept ~30 days for abuse prevention and debugging
2. What the product itself contains
The evidence corpus consists of publicly posted material (posts, videos, threads) with author attribution — the same content anyone can see on the source platform, plus a link back. If you are an author and want something removed, email us and we'll handle it promptly.
3. Processors
Google (optional sign-in), Stripe (Pro billing), Resend (account email), Cloudflare (DNS/CDN), and our VPS host (US). Each sees only what its job needs. We never sell personal data.
4. Your rights
Under UK GDPR, EU GDPR, and CCPA you can access, correct, export, or delete your data, and object to or restrict processing — email [email protected] and we reply within 30 days (usually much faster). UK residents can complain to the ICO (ico.org.uk); EU/EEA residents to their local authority.
5. Retention and transfers
Accounts live until you delete them; order records are kept 7 years (UK tax law); logs rotate after ~30 days. Servers are in the US — transfers from the UK/EU rely on the UK IDTA and EU Standard Contractual Clauses, with TLS in transit and encryption at rest.