Privacy Policy

ProofSeal is designed with privacy by default. In Private mode your content never leaves your device; only a cryptographic fingerprint (SHA‑256 hash) is sent to our servers and anchored to Bitcoin. In Public mode, your text or files are uploaded and displayed on the proof page alongside verification information to enable public attestation.

• Private mode: We receive only the 64‑character SHA‑256 hash of your content. We do not receive the content itself.
• Public mode (text): We store your submitted text and display it on the proof page.
• Public mode (files): We store your uploaded file(s) and show metadata and download links on the proof page. We also store a SHA‑256 checksum per file for verification.
• Operational metadata: Submission identifiers, timestamps, payment status, and Bitcoin anchoring data (e.g., txid, block height) necessary to provide the service.
• Payments: Payments are processed by Stripe. We receive payment status updates and may store customer email/name as provided by Stripe Checkout for receipts and support. We retain the purchaser email for transactional purposes only (e.g., receipts, service notifications, and support). We do not store card or bank details — payment details are handled by Stripe.
• Server logs: Standard web logs for security and debugging (e.g., IP address, user‑agent, request ID). We do not build profiles.

We use Simple Analytics (simpleanalytics.com), a privacy‑friendly analytics service that does not set cookies and does not collect personally identifiable information. It provides us with anonymous insights such as pages visited, referrers, and approximate locations. You can learn more about their approach at simpleanalytics.com.

• Contractual necessity: To provide the service you requested (create, store, and verify proofs; process payments).
• Legitimate interests: To operate, secure, and improve the platform (e.g., spam and abuse prevention, service analytics).
• Consent: Where required (e.g., when you choose Public mode for content display).

• Proof records: Kept as long as necessary to provide a permanent proof of existence. Public text/files remain available until you remove or hide them (where supported).
• Logs: Retained for a limited period for security and debugging, then deleted or anonymized.

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict the use of your personal data. For Public content you control, you can remove or hide text and files where supported by the product. For other requests, contact us using the details below.

We apply industry‑standard technical and organizational measures to protect data, including encryption in transit, access controls, and separation of critical infrastructure. Private mode is designed so your content never leaves your device.

Data may be processed in the country where you access the service and where our infrastructure or subprocessors (e.g., Stripe, Simple Analytics) operate. Where legally required, we rely on appropriate safeguards for transfers.

For privacy questions or requests, contact: privacy@proofseal.org