./PRIVACY_PROTOCOLS

> Data Protection & Privacy Standards

> LAST_UPDATED: 2026-01-19

1. INTRODUCTION

Bakkesplugins LLC DBA SafeComms ("SafeComms", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://safecomms.dev and use our API services.

2. INFORMATION_WE_COLLECT

We collect information that you provide directly to us and information automatically collected when you use our services.

  • Account Information: When you register, we collect your email address, name, and billing details (processed by Stripe).
  • Content Data: Text, images, and other content you submit to our API for moderation.
  • Usage Data: Information about how you use our API, including request volume, timestamps, and IP addresses.

3. HOW_WE_USE_INFORMATION

We use the information we collect to:

  • Provide, operate, and maintain our services.
  • Process transactions and manage your account.
  • Improve our moderation accuracy and API performance.
  • Detect and prevent fraudulent or malicious activity.
  • Comply with legal obligations.

4. DATA_RETENTION_AND_PROCESSING

We employ strict data retention policies to balance performance with privacy.

  • Hashing: Content submitted for moderation is securely hashed. We retain these hashes to enhance lookup speeds and provide faster responses for content we have previously analyzed.
  • No Training on User Data: We use AI models that do not store or use your submitted data for model training purposes.
  • Retention Period: We retain data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law.

5. THIRD_PARTY_PROCESSORS

We may share information with third-party service providers that perform services for us:

  • Stripe: For secure payment processing. We do not store your full payment information on our servers.
  • AI Providers: We may utilize third-party AI infrastructure that adheres to strict non-retention policies for data processing.

6. DATA_SHARING_AND_DISCLOSURE

We do not sell, trade, or rent your personal identification information to others. We may disclose information in the following situations:

  • Legal Requirements: We will disclose information if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).
  • CSAM Reporting: Any content detected as containing Child Sexual Abuse Material (CSAM) will be reviewed and sent to the appropriate authorities (such as NCMEC) as part of our legal obligations to report it. You acknowledge that you have no right to privacy regarding such content.
  • Terrorism & Extremism: We reserve the right to report content identified as promoting terrorism or violent extremism to appropriate authorities if we deem it appropriate. You acknowledge that you have no right to privacy regarding such content.
  • Imminent Threats: We reserve the right to report content that we reasonably believe indicates an imminent threat to the life or safety of any person.

7. SECURITY

We use administrative, technical, and physical security measures to help protect your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse.

8. YOUR_RIGHTS

Depending on your location, you may have certain rights regarding your personal data, such as the right to access, correct, or delete the data we hold about you. To exercise these rights, please contact us at [email protected].

9. ACCOUNT_DELETION_AND_DATA_RETENTION

You have the right to request deletion of your account and associated personal data at any time through your account settings.

  • Deletion Process: When you request account deletion, your account access will be immediately revoked, all active subscriptions will be cancelled, and your API keys will be deactivated.
  • Grace Period: Your account will be marked for deletion with a 60-day grace period. During this time, you may contact support to restore your account if you change your mind.
  • Permanent Deletion: After 60 days, your account and all associated data will be permanently deleted from our systems, subject to the legal exceptions below.
  • Legal Holds and Compliance: Notwithstanding the above, we reserve the right to retain data when required by law or when subject to a litigation hold. This includes but is not limited to:
    • Active or reasonably anticipated legal proceedings, lawsuits, or disputes
    • Government investigations or regulatory inquiries
    • Compliance with valid legal process (subpoenas, court orders, etc.)
    • Detection and prevention of fraud or other illegal activity
  • Litigation Hold Notice: If your account is subject to a litigation hold, it will be flagged to prevent automatic deletion. You will not be notified of such holds as this may compromise legal proceedings. Data subject to legal hold will be retained only as long as legally required.
  • Exceptions to Deletion: Some information may be retained in aggregated or anonymized form that cannot reasonably identify you, and certain backup systems may retain data for a limited period as part of standard disaster recovery procedures.

Note: These data retention practices comply with applicable privacy laws, including GDPR Article 17 (Right to Erasure) exceptions for legal claims and CCPA exceptions for legal compliance.

10. CONTACT_US

If you have questions or comments about this Privacy Policy, please contact us at:
[email protected]