Privacy Policy

Information We Collect

External Authentication Data

When you sign in using external providers (Google, Facebook, etc.), we collect only:

• Email Hash Only - We convert your email to an irreversible cryptographic hash for account identification
• External provider user ID - Used to link your external account to our platform

Communication Limitations

User-Generated Content

• Polls you create (questions, options, descriptions)
• Comments you post on polls

Anonymous Voting Data

Financial Information

• Credit purchase history and transaction records
• Credit balance and usage
• Payment processing is handled by third-party providers - we do not store payment card details

What We DON'T Track

How We Use Your Information

• Account Management: Creating and maintaining your user account using only your email
• Platform Functionality: Enabling poll creation, anonymous voting, and commenting
• Bot Prevention: Using external authentication to ensure authentic users
• Credit System: Managing your credit balance and transaction history
• Content Moderation: Enforcing our Terms of Service and community guidelines
• Communication: Responding to support requests and important platform updates

Anonymous Voting System

Our voting system is designed to protect your privacy while preventing fraud:

• Cryptographic Hashing: We use one-way hashing to record that you voted without storing your actual choice
• Double-Vote Prevention: The hash allows us to prevent multiple votes from the same user
• Complete Privacy: Even we cannot see which option you voted for
• Tamper-Proof: The system ensures vote integrity without compromising privacy

Information Sharing

We do not sell, rent, or trade your personal information. We may share information in these limited circumstances:

• Public Content: Polls and comments you create are publicly visible
• Legal Requirements: When required by law or to protect our rights
• Service Providers: With trusted third parties who help operate our platform (hosting, payment processing, etc.)
• External Authentication: Your login is handled by external providers under their privacy policies

Data Storage and Security

• Email Hashing: Your email is immediately converted to an irreversible SHA-256 hash - we never store the actual email
• Database Security: Even if our database was compromised, attackers would only find meaningless hashes instead of personal information
• Your minimal data is stored securely using industry-standard practices
• We use encryption to protect data in transit and at rest
• Access to data is limited to authorized personnel only
• We regularly review and update our security measures
• Data is stored in secure cloud infrastructure with appropriate safeguards
• Voting data is cryptographically hashed to ensure complete anonymity

Your Rights and Limitations

You have the following rights regarding your data:

• Access: Request a copy of the data we hold (which is minimal and mostly hashed)
• Deletion: Request deletion of your account and associated data
• Portability: Request your data in a machine-readable format (limited due to hashing)

To exercise these rights, please contact us. You will need to provide sufficient information for us to identify your account since we don't store your email.

Cookies and Sessions

We use essential cookies only to:

• Keep you signed in to your account
• Maintain session security
• Prevent fraud and maintain platform integrity

We do not use tracking cookies, analytics cookies, or advertising cookies.

Third-Party Services

Our platform integrates with third-party services:

• External Authentication: Google, Facebook, etc. (subject to their privacy policies)
• Payment Processing: Secure payment providers for credit purchases
• Cloud Infrastructure: Hosting and database services

These services have their own privacy policies, which we encourage you to review.

Account Deletion and Data Retention

How to Delete Your Account

To delete your account, navigate to /Identity/Account/Delete . If you experience any trouble with the deletion process, please contact us at .

Data That Will Be Deleted

• Login Credentials: Your email hash and authentication data will be permanently removed
• Comments: All comments you have posted will be permanently deleted
• Credit Balance: Your remaining credit balance will be forfeited
• Transaction History: Your credit purchase and usage logs will be deleted

Data That CANNOT Be Deleted

GDPR Compliance and Legal Basis

Our data retention practices comply with GDPR Article 17 ("Right to be Forgotten"). We retain polls and votes based on the following legal exceptions:

• Contract Fulfillment (Article 17.1.b): Other users paid for credits to participate in your polls
• Legitimate Interests (Article 17.1.f): Maintaining poll integrity and community value
• Freedom of Expression (Article 17.3.a): Polls represent public discourse and opinion
• Technical Impossibility: Votes cannot be identified as belonging to any specific user

Standard Data Retention

• Account data (email hash) is retained while your account is active
• Deleted content may be retained in backups for a limited time (30 days)
• Transaction records may be kept for legal and tax purposes (as required by law)
• You can request account deletion at any time through Account Settings

Content Moderation

Please note that polls and comments violating our Terms of Service may be removed without prior notification. We reserve the right to moderate content to maintain a safe and respectful community environment.

Changes to This Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will notify users through the platform or via email. Your continued use of our service after changes indicates your acceptance of the updated policy.