Privacy Policy
Last updated: 15 April 2026
1. Who we are
CYPHR ("we", "our", or "us") provides an AI image detection Chrome extension and associated website at getcyphr.com. This Privacy Policy explains what information we collect, how we use it, and your rights in relation to it.
If you have questions about this policy, contact us at privacy@getcyphr.com.
2. Information we collect
We collect only what we need to operate the service:
- Account information — email address and password when you create a paid account (Free plan users do not need an account).
- Payment information — billing details are processed by our payment provider (Stripe) and are never stored on CYPHR servers.
- Usage data — the number of checks you perform each day, to enforce plan limits. We do not log which images you check.
- Extension telemetry — anonymous crash reports and error logs to help us improve reliability. No image data is included.
3. How we handle images
When you submit an image for analysis, it is transmitted securely to our detection service via HTTPS. The image is processed in memory to generate a result and is deleted immediately afterwards. We do not store, retain, index, or use your images for any other purpose — including model training.
We do not share image data with any third party.
4. Cookies and local storage
The CYPHR website uses a single session cookie to keep you signed in. We do not use advertising cookies or third-party tracking pixels. The Chrome extension stores your daily check count in browser local storage only — this data never leaves your device.
5. How we use your information
We use your information only to:
- Provide and maintain the CYPHR service
- Enforce plan limits (daily check quotas)
- Send transactional emails (receipts, password resets)
- Diagnose and fix technical issues
We do not sell your data, use it for advertising, or share it with third parties except as described in section 6.
6. Third parties we work with
We use the following trusted third parties to operate the service:
- Stripe — payment processing. Governed by Stripe's Privacy Policy.
- Vercel — website hosting. Governed by Vercel's Privacy Policy.
No other third parties have access to your personal data.
7. Data retention
We retain account information for as long as your account is active. If you delete your account, your data is removed within 30 days. Usage logs (check counts) are retained for 90 days for billing accuracy, then deleted.
8. Your rights
Depending on your location, you may have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data ("right to be forgotten")
- Object to or restrict certain processing
- Data portability
To exercise any of these rights, email privacy@getcyphr.com. We will respond within 30 days.
9. Security
All data in transit is encrypted using TLS 1.2 or higher. We follow industry-standard security practices and conduct regular reviews of our infrastructure. In the event of a data breach that affects your personal information, we will notify you as required by applicable law.
10. Children's privacy
CYPHR is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, contact us and we will delete it promptly.
11. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For material changes, we will notify account holders by email.
12. Contact
Questions or concerns? Email us at privacy@getcyphr.com.