Privacy Policy

Effective At: October 17, 2025
Last Updated: October 17, 2025

At Secret Chat, privacy isn't a feature—it's our foundation. This Privacy Policy explains how we handle your information when you use our service. We've written it in plain language because transparency matters.

Our Core Privacy Commitment

We do not read, store, or log your conversations. Your chats with AI models happen through our platform, but we are not a party to them. All conversation data is stored locally in your browser, not on our servers.

What We Don't Collect

Let's start with what matters most to you:

• Your Conversations: We do not collect, store, or have access to your prompts, the AI's responses, or any part of your chat history.
• Your Projects and Threads: All organizational structures you create (projects, threads, message edits) are stored exclusively in your browser's local storage.
• Your Uploaded Files: When you upload images or PDFs, we strip metadata and process them ephemerally. We do not retain copies of your files.
• User Profiles or Behavioral Data: We do not build profiles of you, track your behavior across the web, or use your data for advertising.

What We Do Collect

To provide and improve Secret Chat, we collect minimal information:

1. Payment and billing information

When you purchase credits, our payment processor (Stripe) collects your payment card details, billing address, and email address. We do not store your full payment card information on our servers. Stripe processes this data under their own privacy policy, which you can review at stripe.com/privacy.

We retain transaction records (amount, date, anonymous transaction ID) for accounting, fraud prevention, and legal compliance purposes.

2. Private key and credits

If you use Secret Chat without registration, your private key is generated locally in your browser and is never transmitted to our servers. Your credit balance is associated with this key. You are solely responsible for securing your private key. If you lose it, we cannot recover your credits or data.

3. Technical and usage data

We collect limited, anonymized technical information to ensure the service functions properly:

• Server Logs: IP addresses, request timestamps, and error codes are logged temporarily for security monitoring and troubleshooting. These logs are retained for a maximum of 30 days.
• Aggregate Analytics: We may collect anonymous usage statistics (e.g., total number of requests, feature usage patterns) to understand how the service is used and to improve performance. This data is not linked to individual users or sessions.

4. Support communications

If you contact our support team, we retain your email address and the content of your messages to provide assistance. This information is kept only as long as necessary to resolve your inquiry.

How Your Data is Stored

Local browser storage

All of your chat history, projects, and settings are stored in your browser using localStorage or IndexedDB. This means:

• We cannot access this data. It never leaves your device unless you explicitly export it.
• You control it. You can delete it at any time by clearing your browser's cache or using the in-app delete functions.
• It is device-specific. If you switch browsers or devices, your data will not automatically transfer unless you manually export and import it.

Important: Clearing your browser data will permanently delete your local chat history. We cannot recover it for you.

Third-Party AI Model Providers

Secret Chat is a gateway to multiple AI models (including GPT, Claude, Gemini, Grok, Deepseek, Venice, and others). When you send a prompt, we forward it to the selected model provider via their API.

Our contractual guarantees

We only work with providers that offer zero data retention APIs or commit to deleting session data immediately after processing. For each message, you can view a Session Privacy Report that confirms the provider's data handling policy.

Provider-specific policies

Each AI model provider operates under their own terms of service and privacy policy:

• OpenAI (GPT): openai.com/policies/privacy-policy
• Anthropic (Claude): anthropic.com/privacy
• Google (Gemini): policies.google.com/privacy
• xAI (Grok): x.ai/legal/privacy-policy
• Venice: venice.ai/legal/privacy-policy
• DeepSeek: cdn.deepseek.com/policies/en-US/deepseek-privacy-policy.html

We recommend reviewing these policies to understand how each provider handles data sent through their APIs.

Cookies and Tracking Technologies

We use cookies and similar technologies to provide essential functionality:

Strictly necessary cookies

These cookies are required for the service to function. They enable features like session management and security. You cannot disable them without losing core functionality.

Analytics cookies (optional)

We may use privacy-respecting analytics tools (such as Plausible or a similar service that does not track individual users) to understand aggregate site usage. If implemented, you will be able to opt out of these cookies via a banner or settings page.

We do not use third-party advertising cookies or tracking pixels.

Your Data Rights

Depending on your location, you may have certain rights regarding your personal data under laws like the GDPR (Europe) or CCPA (California).

Right to access

You can request a copy of any personal data we hold about you. Since we do not store your conversations, this would be limited to payment records and support correspondence.

Right to deletion

You can request deletion of your payment and billing information. Contact us at info@secret-chat.ai with your request. Note that we may be required to retain certain records for legal or accounting purposes.

Right to portability

You can export your local chat data at any time using the in-app export feature. This data is yours and can be transferred to another service.

Right to object

You can object to our processing of your data for analytics purposes by disabling optional cookies or contacting us.

To exercise any of these rights, email us at info@secret-chat.ai.

Data Security

We take security seriously and implement industry-standard measures to protect your information:

• Encryption in Transit: All data transmitted between your browser and our servers is encrypted using TLS (Transport Layer Security).
• Metadata Stripping: When you upload images or PDFs, we automatically remove EXIF and other metadata before processing.
• Minimal Data Retention: We retain the absolute minimum data necessary to provide the service and comply with legal obligations.
• Access Controls: Access to our systems is restricted to authorized personnel only and is logged for audit purposes.

However, no system is completely secure. While we strive to protect your data, we cannot guarantee absolute security. You are responsible for maintaining the security of your device and your private key.

International Data Transfers

Secret Chat is operated from Montenegro. If you access our service from outside this region, your limited personal data (such as payment information) may be transferred to and processed in Montenegro or other countries where our service providers operate.

We ensure that any such transfers comply with applicable data protection laws, including the use of standard contractual clauses where required.

Children's Privacy

Secret Chat is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected data from a child, we will delete it promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make significant changes, we will notify you by:

• Posting a notice on our website or within the app.
• Updating the "Last Updated" date at the top of this policy.

We encourage you to review this policy periodically. Your continued use of Secret Chat after changes are posted constitutes your acceptance of the updated policy.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: info@secret-chat.ai
Opossum DOO
Herzeg-Novi, Montenegro