Privacy Policy

Effective Date: January 19, 2026

1. Introduction

Welcome to DoppleChat. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you use our AI-powered chat persona service.

By using DoppleChat, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

  • Email Address: Required for account creation, login, and email verification
  • Username: Your chosen identifier for the platform
  • Password: Securely hashed using industry-standard encryption (PBKDF2 with SHA-256)
  • Profile Information: Optional profile picture, phone number, and name

2.2 Chat Upload Analysis (Important)

What We Do:

  • Analyze WhatsApp chat exports to extract communication patterns and writing style
  • Generate AI-powered personality profiles based on the analysis
  • Store only: Person name, generated persona summary, message count, and upload date

What We DON'T Store:

  • Your actual WhatsApp chat messages are NOT stored in our database
  • Messages are processed temporarily during upload and then discarded
  • Only the AI-generated summary (personality profile) is kept

2.3 Conversation Data

  • Your Messages: Messages you send to AI personas
  • AI Responses: Generated responses from AI personas
  • Timestamps: Date and time of conversations

2.4 API Key Information (Dual-Layer Encryption)

If you choose to provide your own Gemini API key:

  • Layer 1 Encryption: Your browser encrypts the key with your password (AES-256-GCM, PBKDF2 with 100,000 iterations)
  • Layer 2 Encryption: Our server re-encrypts it with Django SECRET_KEY (Fernet algorithm)
  • Result: Even database administrators cannot decrypt your API key without the server encryption key

3. How We Use Your Information

Service Delivery

To provide AI-powered chat persona functionality

AI Processing

To generate personality profiles using Google Gemini AI

Account Management

To manage your account and verify your email

Security

To protect against unauthorized access and abuse

4. Data Security

🔒 Security Measures:

  • HTTPS Encryption for all data transmission
  • Password Hashing using PBKDF2 with SHA-256
  • Dual-Layer Encryption for API keys (Client + Server)
  • JWT Authentication with token blacklisting
  • Database Access Control with user isolation

5. Third-Party Services

Google Gemini AI

We use Google's Gemini AI to analyze chat patterns and generate persona profiles. Your uploaded chat data is sent to Google's API for processing. Google's privacy policy applies to their processing of this data.

Email Services

We use email services (AWS SES or SMTP) to send verification codes and account notifications. Your email address is processed in accordance with the email provider's privacy policy.

6. Your Rights & Control

✓ Access

View all your personas and conversations anytime

✓ Delete

Remove individual personas or your entire account

✓ Export

Download your conversation history

✓ Update

Modify your profile and account settings

7. Data Retention

  • Active Accounts: Data retained while your account is active
  • Account Deletion: All data permanently deleted within 30 days
  • System Logs: Retained for 90 days for security purposes

8. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us at:

abrehman2550@gmail.com

Last Updated: January 19, 2026

We may update this policy from time to time. Continued use of the service constitutes acceptance of any changes.

Back to Home