Privacy Policy

Introduction

Dotish Philosopher ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.

By using our services, you consent to the data practices described in this policy. If you do not agree with this policy, please discontinue use of our services.

1. Data Controller Information

The data controller responsible for your personal information is:
Dotish Philosopher
Email: privacy@dotishphilosopher.com

2. Information We Collect

2.1 Information You Provide Directly

• Chat Messages: When you use our AI chat tool, the messages you send are processed by our system and transmitted to OpenAI's API for generating responses.
• Feedback Submissions: If you submit feedback through our feedback form, we collect your message content and optional contact information.
• Mood Data: If you use emotion indicators in the chat, we collect this data to provide contextual responses.

2.2 Information Collected Automatically

• Log Data: We collect IP addresses (hashed for privacy), timestamps, request URLs, and HTTP status codes for security monitoring and rate limiting.
• Browser Information: Browser type, device type, operating system (collected via standard HTTP headers).
• Analytics: We use privacy-focused analytics to understand site usage patterns. No personally identifiable information is tracked.
• Cookies: We use minimal cookies for essential functionality. See Section 5 for details.

2.3 Information Stored Locally (Browser Storage)

• Chat History: Stored in your browser's localStorage. We do not have access to this data unless you choose to send messages via our API.
• Preferences: Theme settings, consent choices, and other preferences are stored locally in your browser.
• Anonymous ID: A randomly generated identifier stored locally to maintain session continuity (not linked to your identity).

3. How We Use Your Information

3.1 Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

• Consent: For chat messages sent to OpenAI API, analytics, and cookies (where required by law).
• Legitimate Interest: For security monitoring, fraud prevention, and service improvement.
• Legal Obligation: For compliance with applicable laws and responding to legal requests.

3.2 Purposes of Processing

• To provide AI-powered chat responses via OpenAI's API
• To detect and prevent security threats, abuse, and fraud
• To monitor system performance and identify bugs
• To improve our services based on usage patterns
• To comply with legal obligations and respond to lawful requests

4. Third-Party Services and Data Sharing

4.1 OpenAI (AI Chat Processing)

Critical Disclosure: When you use our chat feature, your messages are sent to OpenAI's API for processing.

• Data Shared: Message content, conversation context
• Retention: OpenAI retains data for 30 days per their privacy policy
• Location: Data is transferred to the United States
• Purpose: To generate AI responses using GPT models

4.2 Google Fonts

• Data Shared: IP address (when loading fonts)
• Purpose: To display website fonts
• Privacy Policy: Google Privacy Policy

4.3 Buy Me a Coffee Widget (Optional)

• Data Shared: IP address, browser information (only if you interact with the widget)
• Purpose: To enable donations/support
• Privacy Policy: Buy Me a Coffee Privacy Policy
• Control: You can reject non-essential cookies to block this widget

4.4 AWS (Infrastructure)

• Services Used: AWS Lambda, DynamoDB, CloudFront, S3
• Data Shared: Chat metadata (timestamps, rate limiting data), feedback submissions
• Location: US-East-1 (Virginia) region
• Purpose: To host and deliver our services

Important: We do NOT sell, rent, or trade your personal information to third parties for marketing purposes.

5. Cookies and Tracking Technologies

5.1 Essential Cookies (Always Active)

• Cookie Consent: Stores your cookie preference choice
• Session Management: Maintains your chat session state

5.2 Non-Essential Cookies (Requires Consent)

• Buy Me a Coffee Widget: Third-party cookies for donation functionality

You can manage cookie preferences at any time via our settings page.

6. Data Retention

Data Type	Retention Period
Chat messages (in browser)	Until you clear browser data or delete conversation
Chat messages (OpenAI API)	30 days (per OpenAI policy)
IP address hashes (rate limiting)	7 days
Feedback submissions	90 days
Server logs	7 days

7. Your Privacy Rights

7.1 GDPR Rights (European Economic Area)

If you are located in the EEA, you have the following rights:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate personal data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time (doesn't affect prior processing)
• Right to Lodge a Complaint: File a complaint with your local data protection authority

7.2 CCPA Rights (California Residents)

If you are a California resident, you have the following rights:

• Right to Know: Request disclosure of personal information collected, used, and shared
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt-out of the sale of personal information (Note: We do NOT sell personal information)
• Right to Non-Discrimination: Equal service regardless of exercising privacy rights

7.3 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

• Email: privacy@dotishphilosopher.com
• Subject Line: "Privacy Rights Request"
• Include: Your specific request and reasonable identification verification

Response Time: We will respond within 30 days (GDPR) or 45 days (CCPA) of receiving your request.

8. Data Security

We implement appropriate technical and organizational security measures to protect your data:

• Encryption in Transit: All data transmitted between your browser and our servers uses HTTPS/TLS encryption
• Encryption at Rest: Sensitive data is encrypted using AWS encryption services
• Access Controls: Limited access to personal data on a need-to-know basis
• Web Application Firewall: AWS WAF protects against common web exploits
• Rate Limiting: Protects against abuse and DDoS attacks
• Security Monitoring: Continuous monitoring for security threats

Note: While we strive to protect your data, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

9. International Data Transfers

Your information may be transferred to and processed in the United States and other countries where our service providers operate. These countries may have different data protection laws than your country of residence.

When we transfer personal data from the EEA to other countries, we rely on:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions by the European Commission
• Your explicit consent

10. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18.

If we learn that we have collected personal information from a child under 18, we will take steps to delete such information as quickly as possible. If you believe we have collected information from a child under 18, please contact us immediately at privacy@dotishphilosopher.com.

11. Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature. Our website does not currently respond to DNT signals. However, we use minimal tracking and provide cookie controls to protect your privacy.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date.

Material changes will be communicated via:

• A prominent notice on our website
• Email notification (if you've provided contact information)

Your continued use of our services after changes constitute acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Email: privacy@dotishphilosopher.com
• General Inquiries: contact@dotishphilosopher.com
• Feedback: Submit via our feedback form

← Back to Home