Skip to main content

Privacy Policy

How we handle your data.

Last updated: February 2026

Introduction

Decipon is a manipulation detection service that analyzes content to surface influence tactics and verification gaps. This privacy policy explains what information we process, how we use it, and your rights regarding your data.

This policy applies to all Decipon services including the web application, the REST API, the Chrome browser extension, the Public Good Pool free tier, and the donation system.

Data We Process

B2C: Extension & Free Tier

Zero personal data collected. The browser extension sends only content text and content type to our API for analysis. The free endpoint (/v1/analyze/free) requires no authentication and collects no user identifiers.

No browsing history, cookies, account credentials, or tracking identifiers are collected from extension or free-tier users.

B2B: API Customers

For billing and account management, we collect: email address, name, and Stripe customer IDs. Usage logs track endpoint and token counts, not the content you analyze.

API keys are stored as SHA-256 hashes—we cannot retrieve your plaintext key after issuance.

Analysis Results

All analysis results are addressed by a SHA-256 content hash. Results are not linked to any user. Any authenticated API customer can retrieve a result by its content hash. There is no per-user analysis history.

Content Analyzed

All content analyzed by Decipon is already publicly available: news articles, social media posts, YouTube transcripts, and other public web content. Decipon does not analyze private messages, emails, or non-public content.

How We Use Data

  • Influence scoring: Analyzing submitted content across 20 influence tactic categories to generate manipulation scores and evidence.
  • Service improvement: Understanding aggregate usage patterns to improve accuracy, performance, and user experience.
  • Product analytics: Tracking anonymous usage events (page views, analysis counts, error rates) to understand feature adoption and improve the service. See the Analytics section below for details.
  • Abuse prevention: Detecting and blocking automated abuse, SSRF attempts, and rate limit circumvention.
  • Billing: Processing payments and managing API access tiers for B2B customers.

Data Retention

  • Analysis results: Retained indefinitely, keyed by content hash. These contain no personal data.
  • B2B billing data: Retained while your account is active and for the period required by applicable tax and accounting regulations.
  • API request logs: Rotated periodically and not retained indefinitely. Logs contain endpoint, timestamp, and token counts—not analyzed content.
  • Redis cache: Ephemeral. Cached data expires automatically.

Chrome Extension

The Decipon Chrome extension operates on 28+ supported news sites, Twitter/X, and YouTube. It extracts page content and sends it to the Decipon API for analysis only. Specifically:

  • Content text and content type are sent to our API for influence scoring.
  • No browsing history is collected or transmitted.
  • No tracking cookies are set by the extension.
  • No user identifiers are collected or transmitted.
  • The extension does not run on pages outside its supported site list.
  • Your API key is stored locally in browser storage and is never sent to third parties.

Analytics

We use PostHog (EU-hosted instance) for anonymous, server-side product analytics. All analytics events are captured server-side—no tracking scripts run in your browser.

What we track:

  • Page views (page name and referrer domain only—not full URLs)
  • Analysis events (started, completed, cached—with bucketed scores like "low/medium/high", never exact values)
  • Billing funnel events (checkout started/completed, product type—never exact amounts)
  • Error counts (exception type and endpoint, never content or stack traces)

What we do NOT track:

  • No analyzed content or URLs
  • No IP addresses (GeoIP is disabled at the SDK level)
  • No email addresses, usernames, or account identifiers
  • No exact scores, amounts, or financial data
  • No browser fingerprints or cookies
  • No cross-session user tracking (person profiles are disabled)

All distinct IDs are SHA-256 hashed values that cannot be reversed to identify individuals. PostHog person profiles are disabled at the SDK level, meaning no user identification is possible even within PostHog itself.

Analytics can be fully disabled by the server operator via the POSTHOG_ENABLED=false environment variable. Analytics data is retained according to PostHog's EU data retention policies.

Third-Party Services

Stripe

Payment processing for B2B API billing and anonymous credit purchases. Subject to Stripe's Privacy Policy.

LLM Providers (xAI, OpenAI, Groq, Google)

Receive public content text for context-dependent analysis scoring. No personal data is included in prompts sent to these providers.

HuggingFace

Model downloads only. No content or user data is sent to HuggingFace during analysis.

PostHog

EU-hosted product analytics. Receives only anonymous, server-side events (no PII, no content). Person profiles are disabled. Subject to PostHog's Privacy Policy.

Infrastructure (PostgreSQL, Redis)

Persistent storage and caching. Hosted on infrastructure we control; not shared with third parties.

Donations

  • Email: Providing an email address when donating is optional. If provided, it is used only to send a receipt.
  • Amount: Donation amounts are tracked for Public Good Pool accounting and transparency.
  • Logging: Donor email addresses are masked in system logs.

Data Security

  • HTTPS: All communication between clients and the Decipon API is encrypted in transit.
  • Hashed identifiers: Content is identified by SHA-256 hashes, not stored as plaintext URLs or titles.
  • No plaintext credentials: API keys are stored as cryptographic hashes.
  • SSRF protection: URL-based analysis requests are validated against SSRF attacks to prevent abuse.
  • Atomic financial operations: All billing and credit transactions use database-level atomic operations to prevent data inconsistency.
  • Prompt injection filtering: Content sent to LLM providers is filtered to prevent prompt injection attacks.
  • Access controls: Database and infrastructure access is restricted to authorized personnel.

Your Rights

Your rights depend on how you use Decipon:

  • Extension & free-tier users: No personal data is collected, so there is no personal data to access, correct, or delete.
  • B2B API customers: You may request export of your billing data or deletion of your account by contacting us. Under GDPR, you have the right to access, rectification, erasure, data portability, and to object to processing of your personal data.
  • Extension users: You can clear your local analysis cache at any time via the extension popup and uninstall the extension to stop all data transmission.

To exercise these rights, contact us at the address below.

Training Data

To improve our ML models, we sample approximately 10% of analyses for training purposes (opt-in).

  • Training data contains public content text only—no user identifiers or personal data.
  • Training samples are not linked to any user, API key, or account.
  • This data is used solely to improve the accuracy of Decipon's manipulation detection models.

Cookies & Local Storage

Decipon uses minimal cookies for session management only.

  • No third-party tracking cookies are set.
  • No advertising or remarketing pixels are used.
  • Local storage may be used for UI preferences but not for tracking.

Changes to This Policy

We may update this privacy policy to reflect changes in our practices or legal requirements. Significant changes will be communicated via an update notice on this page and, where applicable, via email to registered API users. The "Last updated" date at the top of this page indicates when the policy was last revised.

Contact

For privacy inquiries, data access requests, or questions about this policy:

privacy@decipon.com

Analyze Content