Privacy Policy

Effective Date: January 30, 2026

1. Information We Collect

AuthentiCheck ("we," "us," or "our") collects the following information:

  • Image Data: Images uploaded for analysis are stored securely based on user authentication status. Guests' images are purged after 10 days. Registered users' images may be retained for up to 6 months.
  • Account Information: If you create an account via OAuth (Google/GitHub), we collect your email address, name, and profile picture.
  • Usage Data: We collect anonymized analytics data including session IDs, analysis timestamps, and daily usage counts.
  • Cookies: We use essential cookies for session management and authentication.

2. How We Use Your Information

We use collected information to:

  • Perform AI image authenticity analysis
  • Manage user accounts and authentication
  • Enforce daily rate limits for fair usage
  • Improve our detection algorithms and service quality
  • Beta Testing: During the beta period, we reserve the right to review submitted photos to verify analysis accuracy and train our models.
  • Comply with legal obligations

3. Data Retention

  • Guest Uploads: Automatically purged from our secure storage 10 days after upload.
  • Registered User Uploads: Retained for up to 6 months to provide history access and improved model accuracy.
  • Analysis Results: Metadata (verdict, confidence score, timestamps) is retained for authenticated users.
  • Thumbnails: Low-resolution thumbnails are stored for preview purposes within your dashboard history.
  • Account Data: Retained until account deletion is requested.

4. Data Sharing

We do not sell your personal information. We may share data with:

  • Service Providers: Infrastructure providers (database hosting, authentication services) under strict confidentiality agreements.
  • Legal Requirements: When required by law or to protect our rights.

5. Your Rights (GDPR/CCPA)

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate information
  • Erasure: Request deletion of your account and associated data
  • Data Portability: Receive your data in a structured format
  • Opt-Out: California residents may opt out of data "sales" (we do not sell data)

To exercise these rights, contact us at: privacy@solutionxt.com

6. Security

We implement industry-standard security measures including:

  • HTTPS encryption for data in transit
  • PostgreSQL with encrypted connections for data at rest
  • OAuth 2.0 for secure authentication
  • Regular security audits

7. Children's Privacy

AuthentiCheck is not intended for users under 13 years of age. We do not knowingly collect data from children.

8. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated effective date.

9. Contact Us

For privacy-related inquiries, contact:
Email: privacy@solutionxt.com
Address: SolutionXT AI, [Address TBD]