Privacy Policy – Connecto

GDPR & CCPA Compliant

Connecto ("we", "our", "us") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.

1. Information We Collect

Personal Data: When you register, we collect your email address, username, and hashed password. You may optionally provide an avatar and banner image.

Usage Data: We collect messages, reactions, server memberships, and IP addresses for security and moderation purposes.

Device Information: Browser type, operating system, and timestamps are logged for performance monitoring.

2. How We Use Your Information

To provide, maintain, and improve the service.
To authenticate your identity and prevent fraud.
To moderate content and enforce our Terms of Service.
To send you essential notifications (verification, security alerts).
To comply with legal obligations.

3. Data Storage & Security

Your data is stored on Cloudflare D1 databases located in the EU and US. We implement industry‑standard encryption in transit (TLS 1.3) and at rest. Passwords are hashed using PBKDF2 with a pepper.

4. Sharing of Data

We do not sell your personal data. We may share data with:

Cloudflare (infrastructure provider) – under their data processing addendum.
Brevo (email delivery) – only your email address for verification.
Law enforcement when required by valid legal process.

5. Your Rights (GDPR / CCPA)

Depending on your location, you may have the right to:

Access, correct, or delete your personal data.
Restrict or object to processing.
Data portability.
Withdraw consent (where applicable).

To exercise these rights, contact us at privacy@chatverse.com. We will respond within 30 days.

6. Data Retention

We retain messages and account data as long as your account is active. After deletion, we may keep anonymized backups for up to 90 days. Audit logs are retained for 12 months.

7. Cookies & Tracking

We use essential cookies for authentication and WebSocket sessions. No third‑party analytics or advertising cookies are used. You can disable cookies in your browser, but some features may not work.

8. Children’s Privacy

Connecto is not directed to children under 13. We do not knowingly collect information from children. If you believe a child has provided us with data, contact us to remove it.

9. Changes to This Policy

We will notify users of material changes via email or in‑app notice. The latest version will always be available at this URL.

10. Contact Information

Data Protection Officer: dpo@chatverse.com
Legal correspondence: legal@chatverse.com