Last updated: June 30, 2025

At PokéChat Classifier, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you use our AI-powered photo personality analysis service.

1. Information We Collect

1.1 Account Information

• Discord Account Data: When you sign in via Discord OAuth, we collect your Discord username, email address, profile picture, and unique Discord ID
• User Profile: Your display name, email address, and profile image from your Discord account
• Account Settings: Your subscription status (free/premium), usage count, and user role (customer/admin)

1.2 Photos and Visual Data

• Uploaded Photos: Images you voluntarily upload for personality analysis (JPEG, PNG, WebP formats)
• Facial Recognition Data: Facial expressions, emotions, and visual traits extracted from your photos
• Photo Metadata: File size, upload timestamp, and image properties
• Analysis Results: AI-generated personality assessments and Pokémon matches based on your photos

1.3 Usage Analytics

• Service Usage: Number of analyses performed, timestamps, and processing times
• Feature Interaction: Which features you use and how often
• Error Logs: Technical logs for troubleshooting and service improvement

1.4 Technical Information

• Device Information: Browser type, operating system, and device capabilities
• Network Data: IP address, connection type, and geographic location (general)
• Session Data: Login sessions, authentication tokens, and security information

2. How We Use Your Information

2.1 Core Service Functionality

• Photo Analysis: Processing your photos using Google Cloud Vision API and Google Gemini AI to extract personality traits
• Personality Matching: Comparing your analyzed traits with our 930+ Pokémon database to find your perfect match
• Results Generation: Creating personalized reports with confidence scores and detailed reasoning
• User Experience: Providing a personalized interface based on your usage history and preferences

2.2 Account Management

• Authentication: Verifying your identity and maintaining secure login sessions
• Usage Tracking: Monitoring your analysis count against free tier limits (5 analyses per day)
• Premium Features: Managing subscription status and unlimited access for premium users
• Admin Functions: Providing administrative tools for authorized personnel

2.3 Service Improvement

• Algorithm Enhancement: Improving our AI matching algorithms using aggregated, anonymized data
• Performance Optimization: Analyzing usage patterns to optimize service speed and reliability
• Error Resolution: Identifying and fixing technical issues to improve user experience
• Feature Development: Understanding user needs to develop new features and improvements

3. Third-Party Services

We integrate with several third-party services to provide our functionality:

3.1 Authentication & Social

• Discord OAuth: For secure user authentication and profile information
• NextAuth.js: For session management and security

3.2 AI & Analysis Services

• Google Cloud Vision API: For high-accuracy facial expression and emotion detection
• Google Gemini AI: For personality analysis and Pokémon matching intelligence
• OCR.space API: As backup OCR service when needed

3.3 Infrastructure & Storage

• PostgreSQL Database: For secure data storage and user management
• Prisma ORM: For database operations and data integrity
• Upstash Redis: For rate limiting and performance optimization

3.4 Payment Processing

• Stripe: For secure payment processing and subscription management (when applicable)

4. Data Storage and Security

4.1 Data Storage

• Database: User data is stored in a secure PostgreSQL database with encryption at rest
• Photo Processing: Uploaded photos are processed temporarily and not permanently stored on our servers
• Analysis Results: AI analysis results are stored to improve your experience and for historical reference
• Session Data: Authentication sessions are managed securely with encrypted tokens

4.2 Security Measures

• Encryption: All data transmission is encrypted using HTTPS/TLS protocols
• Authentication: Secure OAuth2 authentication via Discord with session management
• Access Control: Role-based access control with customer and admin user levels
• Rate Limiting: Protection against abuse with usage limits and monitoring

4.3 Data Retention

• Account Data: Stored for the duration of your account plus 30 days after deletion
• Analysis Results: Retained for 1 year to provide historical access and service improvement
• Photos: Processed immediately and not stored permanently on our servers
• Logs: Technical logs retained for 90 days for security and debugging purposes

5. Your Rights and Choices

5.1 Data Access and Control

• Account Access: View and manage your account information through the user dashboard
• Analysis History: Access your past personality analysis results and Pokémon matches
• Data Export: Request a copy of your data in a portable format
• Account Deletion: Delete your account and associated data at any time

5.2 Privacy Controls

• Photo Privacy: Your photos are processed privately and not shared with other users
• Result Privacy: Your personality analysis results are confidential and not public
• Opt-out: Choose not to participate in service improvement analytics
• Communication: Control how we communicate with you about service updates

5.3 Legal Rights (GDPR/CCPA)

• Right to Know: Request information about what personal data we collect and how it's used
• Right to Delete: Request deletion of your personal data subject to legal requirements
• Right to Correct: Request correction of inaccurate personal information
• Right to Portability: Receive your data in a machine-readable format

6. Children's Privacy

Our service is designed for users aged 13 and older. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately, and we will take steps to remove such information.

7. International Data Transfers

Your data may be processed and stored in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with applicable privacy laws and international standards.

8. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes via email or through our service. Continued use of our service after changes indicates acceptance of the updated policy.

9. Contact Information

If you have questions about this Privacy Policy, need to exercise your privacy rights, or have concerns about how your data is handled, please contact us: