Privacy Policy

When you create an account, we keep:

• Email address
• Display name
• Password hash (one-way bcrypt — never reversible to plain text)
• IP address and User-Agent at signup, for abuse prevention
• Whether your email has been verified
• Locale preference (English, Portuguese, French)
• If you sign in with Google: your Google subject identifier (a random ID, not your Google password)

To know roughly how the product is being used:

• A counter of chat sessions you started, by type (Meeting, 1-on-1, Interview, Translation)
• A counter of messages sent in each session
• Last-activity timestamp on a session

We do not store the content of any message, audio recording, transcription, or AI response.

• The text content of your messages
• The audio of your recordings
• The AI's responses to you
• Any video, screen capture, or visual data
• Metadata about who you are talking to in real life or what meetings you have

Privacy Window is a thin client around OpenAI's APIs. When you use the chat:

• Your messages and audio are sent in real time to OpenAI's API for processing — chat completion (GPT-4o), Whisper for transcription, and (only on the Interview mode) the OpenAI web search tool to fetch context about the company you're interviewing for.
• We do not keep our own copy of what is sent to OpenAI.

We use the standard OpenAI developer API (platform.openai.com). Per OpenAI's API Data Usage Policy:

• Data submitted through the API is not used to train OpenAI's models.This is the default for every API customer — it's not a paid upgrade or special agreement.
• Data is retained on OpenAI's servers for up to 30 days only for abuse-monitoring purposes, then permanently deleted.
• The same policy applies to text (Chat API), audio (Whisper transcription), and tool calls (web search).
• OpenAI is SOC 2 Type 2 certified for the API platform.

Note: this differs sharply from the consumer ChatGPT product, which (unless you opt out) uses your conversations for training. Privacy Window does not use ChatGPT — only the developer API, which is governed by the policy above.

The app uses minimal cookies, all first-party:

• pw_session — encrypted authentication cookie. HttpOnly, Secure, SameSite=Lax. Lives 30 days unless you sign out.
• cf-clearance, __cf_bm— Cloudflare bot-protection cookies. We do not control these directly; see Cloudflare's policy.

• We do not sell your data to anyone, ever
• We do not share your data with advertisers
• We do not use your data to train any AI model
• We do not run third-party tracking or advertising scripts inside the desktop client
• The public website (privacywindow.app) uses Google Analytics 4 for visitor metrics; this does not run inside the desktop client

Privacy Window operates from Portugal (EU). The service relies on OpenAI for AI processing, which means content you submit is transferred to OpenAI's infrastructure in the United States.

OpenAI is certified under the EU-US Data Privacy Framework, which provides an adequate level of data protection for EU personal data transferred to the US under the GDPR. OpenAI also offers Standard Contractual Clauses (SCCs) as an additional safeguard.

Cloudflare (front-end CDN, captcha) and Resend (verification emails) are also processors located outside the EU, similarly covered by the Data Privacy Framework or SCCs.

Under the GDPR, we process your data on the following bases:

• Performance of a contract — to provide the service you signed up for (account creation, chat sessions, AI processing of your inputs)
• Legitimate interest — to log signup IPs and maintain rate limits for abuse prevention; to count usage for capacity planning
• Consent — for the analytics on the public website (Google Analytics) and for receiving any marketing communications you opt into
• Legal obligation — if required to retain records by applicable law

You have the right to:

• Access the data we hold about you
• Rectify inaccurate data (you can also do this in-app)
• Erasure— delete your account and all associated data ("right to be forgotten")
• Restrict processing in certain circumstances
• Data portability — receive your data in a machine-readable format
• Object to processing based on legitimate interest
• Withdraw consent at any time, where consent is the basis
• Lodge a complaint with the Portuguese data protection authority (CNPD) or with the supervisory authority of your EU country of residence

To exercise any of these rights, email us at [email protected]. We'll respond within 30 days.

• Account data: kept while your account is active. Deleted within 30 days of account deletion request.
• Usage counters: same as account data — deleted with account.
• Content sent to OpenAI:we don't store it; OpenAI retains for up to 30 days for abuse monitoring (see Section 4).
• Verification emails (Resend):retained per Resend's policy, generally 30 days.
• Server logs: rotated, kept up to 14 days for debugging.

Privacy Window is not directed at anyone under 16. We don't knowingly collect data from minors. If you believe a minor has created an account, contact us and we'll delete it.

We may update this policy. Material changes will be communicated by email to the address tied to your account, at least 14 days before they take effect.

The data controller for the purposes of the GDPR is the operator of Privacy Window. We have not appointed a Data Protection Officer, as we don't meet the GDPR thresholds requiring one.

Privacy Window is operated by:

• Name: Eduardo Pessin (sole proprietor)
• Country of establishment: Portugal
• NIF / Tax ID: [to be added once formalised]
• Registered address: [to be added once formalised]

For all privacy questions, deletion requests, or to exercise any GDPR right: [email protected]