Privacy Policy

1. What We Collect

We collect the minimum information needed to operate an adult-content directory.

Account data. When you create an account, we collect your email address and a bcrypt-hashed copy of your password. You may optionally verify your email; verification is no longer required to browse. Sessions are tracked by a signed, HTTP-only session cookie tied to a session record in our database.

Profile and product data. Characters and personas you favorite or save into collections, persona "memory cards" you create, ratings and reviews you submit, prompt copies (logged anonymously for analytics), referral cookies, and Premium tier status.

Technical and usage data. Truncated or hashed IP addresses for abuse prevention and rate-limiting, a small number of page-view events for product analytics (no fingerprinting), user-agent strings, and broad geographic region (derived from IP — country-level only).

Payment data. All payments are processed by Cryptomus in cryptocurrency. We store only the Cryptomus order ID, the plan you purchased, the amount, the currency, and the resulting subscription status. We never see your card numbers, bank details, wallet private keys, or full wallet addresses.

Communications. If you email us, we keep the message and any attachments needed to respond.

2. What We Do NOT Collect

• No real names are required to use Charmuse.
• No physical addresses, no government IDs, no driver's licenses, no SSNs.
• No credit-card or bank-account numbers — we are crypto-only.
• No phone numbers unless you voluntarily provide one in support correspondence.
• No fingerprinting — we don't run device-fingerprinting libraries, ad pixels, or cross-site trackers.
• No conversation content — Charmuse does not host AI chat; the actual conversations happen on third-party platforms whose privacy policies apply there.

3. Cookies and Similar Technologies

We use a small number of cookies and local-storage entries:

• Strictly necessary. The ks_session cookie (signed, HTTP-only, secure) authenticates you. A CSRF token cookie protects form submissions.
• Functional. A ks_ref cookie remembers the referrer who sent you to Charmuse (for our referral program), a theme/accent preference, and PWA install-prompt state.
• Analytics (optional). Where deployed, we use Cloudflare Web Analytics — a privacy-respecting analytics service that does not fingerprint users, does not use third-party cookies, and does not collect personal data. You can disable JavaScript or use a tracker-blocker without breaking core functionality.

We do not use third-party advertising cookies, retargeting pixels, social-media share trackers, or behavioral-advertising networks.

4. How We Use Your Data

We use the information described above to:

• Create and operate your account, including login, password recovery, and session management;
• Deliver the Service — display characters, save favorites, sync collections, route affiliate clicks, and credit referrals;
• Process Premium subscriptions and payments through Cryptomus and grant/revoke access tier;
• Send transactional emails (verification, password reset, billing receipts, plan changes, security alerts);
• Detect, prevent, and respond to fraud, abuse, scraping, and other security incidents;
• Comply with legal obligations and respond to lawful requests;
• Measure aggregate usage to improve the product (without identifying individuals).

We rely on the following legal bases (for users in jurisdictions where this applies): performance of a contract (account, billing), legitimate interests (security, fraud prevention, product improvement), consent (optional analytics, marketing emails), and legal obligation (tax records, lawful requests).

5. Sharing and Sub-Processors

We do not sell your personal information. We do not "share" your personal information for cross-context behavioral advertising as defined under U.S. state privacy laws. We disclose data only to a small number of vetted sub-processors who help us run the Service:

• Cloudflare — hosting, CDN, DNS, edge compute, KV storage, R2 object storage, D1 database, image delivery, and Web Analytics.
• Cryptomus — cryptocurrency payment processing and merchant account services.
• Emailit — transactional email delivery (verification, password reset, billing).
• OpenRouter — routing of AI-completion requests for persona generation features (anonymized at the prompt level where possible).
• fal.ai — AI image generation for character artwork (no user-identifying data sent).

Each sub-processor is contractually bound to use your data only to provide its service to Charmuse, and to apply appropriate technical and organizational safeguards. We may also disclose data to comply with valid legal process (subpoenas, court orders), to enforce our Terms, to investigate suspected fraud or abuse, or to protect the rights, property, or safety of Charmuse, our users, or the public.

6. International Data Transfers

Charmuse is operated from the United States. Because we use Cloudflare's global edge network, your requests may be served from data centers located in the United States, Europe, Asia, and other regions. We rely on Cloudflare's compliance posture (including Standard Contractual Clauses where applicable) for international transfers of personal data originating in the European Economic Area, the United Kingdom, and Switzerland.

7. Data Retention

• Account data — kept while your account is active. After deletion, we erase or irreversibly anonymize within 30 days, except where retention is legally required.
• Analytics — aggregated and rolled up; raw event-level data is retained for at most 90 days.
• Payment records — retained for seven (7) years to comply with U.S. tax, accounting, and anti-money-laundering recordkeeping obligations.
• Email delivery logs — 30 days at our email provider; nothing about message content beyond delivery status.
• Security and abuse logs — IP-related logs are truncated/hashed and retained for up to 90 days.
• Support correspondence — kept for two (2) years after the last reply.

8. Your Rights

Depending on where you live, you may have any of the following rights:

• Right of access — request a copy of the personal data we hold about you.
• Right to rectification — correct inaccurate or incomplete data; you can update most fields from /account.
• Right to erasure ("right to be forgotten") — delete your account and associated personal data from /account, or by email.
• Right to data portability — receive your data in a structured, machine-readable JSON export.
• Right to object / restrict — object to certain processing (e.g., legitimate-interest processing).
• Right to withdraw consent — for processing based on consent (e.g., marketing emails), at any time.
• California (CCPA/CPRA) residents — the right to know what we collect, the right to delete, the right to correct, and the right to opt out of "sale" or "sharing" of personal information. We do not sell or share personal information for cross-context behavioral advertising; nothing for you to opt out of.
• Right to non-discrimination — exercising any privacy right will not result in degraded service or pricing.

To exercise any right, email [email protected] from the address on file, or use the in-app controls under /account. We respond within 30 days (45 days for CCPA, with an extension where permitted). You also have the right to complain to your local data-protection authority.

9. Children's Privacy

Charmuse is strictly for adults. We do not direct the Service to anyone under 18 (or the age of majority in your jurisdiction, whichever is greater), and we do not knowingly collect personal information from minors. If we learn that an account belongs to a minor, we will terminate the account and delete the associated data. If you are a parent or guardian and believe a minor has provided us information, email [email protected] for immediate removal.

10. Security

We protect your data with industry-standard safeguards, including:

• Passwords hashed with bcrypt (we never store plain text or reversible encryptions);
• TLS 1.2+ on all connections, with HSTS and modern cipher suites;
• Encryption-at-rest on Cloudflare D1, R2, and KV storage;
• HTTP-only, secure, SameSite session cookies; CSRF tokens on state-changing requests;
• Rate-limiting, bot detection, and Web Application Firewall rules at the edge;
• Principle-of-least-privilege access controls; periodic security review of code and dependencies.

No system is perfectly secure. If we discover a breach affecting your personal data we will notify affected users without undue delay, in accordance with applicable law.

11. Adult Content, Discretion, and Privacy-First Design

We designed Charmuse with adult-content discretion in mind:

• Crypto-only billing — there are no descriptive line-items on credit-card statements because there is no credit-card statement. Cryptocurrency payments appear in your wallet as normal blockchain transactions, with no merchant-visible descriptor.
• No real-name requirement — your email address is the only identifier we require.
• No advertising trackers — your visits are not propagated into ad networks or social-media trackers.
• No fingerprinting — Cloudflare Web Analytics (where used) is a cookie-free analytics product that does not fingerprint visitors.

12. Third-Party Links

Charmuse links to third-party AI companion platforms via affiliate URLs. When you click those links, you leave Charmuse and arrive at a third-party site that has its own privacy policy. Charmuse is not responsible for the data practices of those platforms. Review each platform's privacy notice before signing up.

13. Changes to This Policy

We may update this Privacy Policy as the Service evolves or as the law changes. We will update the "Last updated" date above; for material changes we will notify you by email or with an in-product banner before the change takes effect. Continued use of the Service after the effective date constitutes acceptance of the updated policy.

14. Contact

For privacy questions, rights requests, or data-protection issues, email [email protected]. Our Data Protection Officer can be reached at the same email address. Postal mail may be sent to CharMuse Inc., 402, Bhendi Bazaar Street, Mumbai – 01, India (Attn: Data Protection Officer).