Privacy Policy - Nobody AI

01

Information We Collect

We collect only the information needed to operate the workspace, verify users, process payments, and keep usage limits accurate.

Account identity such as email address, display name, login provider, and password hash when email/password login is used.
Telegram verification data such as chat ID, verified email, verification time, and related anti-abuse status.
Billing records such as payment method, order identifiers, token batches, Pro status, and reconciliation status.
Workspace usage metadata such as model requests, token consumption, errors, and audit events required to operate the service.

02

Data is used to provide the product, enforce account limits, prevent dummy-account abuse, and help users recover from payment or access issues.

Authenticate users and keep one account tied to one verified Telegram identity when verification is required.
Apply token limits, Pro entitlement, topup credits, and payment reconciliation.
Improve reliability by debugging failed requests, quota issues, and webhook events.
Respond to support, legal, or security requests sent through official contact channels.

03

We use server-side controls, prepared database operations, and protected configuration files to reduce exposure of sensitive keys and user records.

Payment and API secrets are stored server-side and are not intentionally exposed to browser code.
Password-based accounts use password hashes, not plain text passwords.
Access to AI usage can be blocked until Telegram verification passes.
Users should not paste passwords, private keys, seed phrases, or other secrets into prompts unless they fully understand the risk.

04

Operational records may be retained while an account exists or while needed for billing, abuse prevention, security, or legal compliance.

You may request account review, correction, or deletion through the contact page.
Some billing, anti-abuse, or security records may need to be retained where required to protect the system or resolve disputes.