Last updated: 2026-03-27
We collect information you provide directly: email address, display name, and profile data when you create an account (via email or Google Sign-In). We also collect usage data including scan history, credit transactions, badges earned, XP progress, streak activity, mission completions, community voting activity, contributor tier, trust score, and community earnings history. For video and image analysis, we process URLs and uploaded files temporarily. Video frames from URL scans are deleted immediately after processing. Uploaded files (images, video, audio, PDFs) are stored securely and available for user-initiated deletion. Audio files submitted for voice analysis are processed temporarily and not retained permanently. For email scanning (Gmail integration), we request read-only access to your inbox via Google OAuth. We do not store email content, only scan results are retained. For website scanning, we analyze publicly accessible web pages and do not store the page content. Voice dictation input (used in the Share Experience text mode) is processed by your browser's built-in speech recognition and is not transmitted to our servers. Live Analysis deepfake detection and audio threat scoring run entirely on-device. Live transcription uses your browser's speech recognition API, which may route audio through the browser vendor's cloud service (for example Google for Chrome, Apple for Safari). Truvizy does not control or receive this data.
We use your information to provide the Truvizy scanning and detection service across all supported content types (video URLs, images, audio, PDFs, websites, emails). We process subscription payments via Stripe. We send transactional emails (verification, scan results, account updates). We send optional engagement emails (tips, feature updates, weekly digests). We track your gamification progress (XP, levels, badges, streaks, missions). We manage your contributor profile (tier, trust score, earnings). We award credits for approved community contributions. We operate the community rewards and bounty programs. We prevent abuse through rate limiting and content moderation. We do not sell your personal data to third parties.
Free-tier users may see advertisements served by Google AdSense. Google may use cookies and similar technologies to serve ads based on your browsing activity. You can manage your ad preferences at adssettings.google.com. Paid subscribers (Scan Pro, Forensic) receive an ad-free experience. For users in the EU/EEA and UK, we collect consent for personalized ads in compliance with GDPR via a Google-certified consent management platform.
We use the following third-party services to operate Truvizy. A cloud database and authentication provider for secure data storage and login. Stripe for payment processing — we never see or store your full card number. Analytics tools for product improvement — you can opt out in your profile settings. Google AdSense for advertising to free-tier users. An email delivery service for transactional and engagement emails. Each service has its own privacy policy and processes data as needed to provide its function.
We use browser local storage to persist your session, language preferences, scan mode preferences, mission progress, and streak data. Google AdSense may set cookies for ad personalization. We do not use tracking cookies beyond what is required for analytics and advertising.
Your data is stored securely using industry-standard cloud infrastructure with encryption in transit (TLS 1.2+) and at rest. We implement rate limiting, content security policies, and security headers to protect your data. Data handling varies by content type. URL scans: video frames are extracted from the source, analyzed, and deleted immediately after processing. The original video is never downloaded or stored. File uploads (images, video, audio): uploaded files are stored securely during processing and are available for user-initiated deletion. You may request permanent removal at any time from your scan history or by contacting support. Audio files: audio uploaded for voice or scam call analysis is processed and not stored permanently. Temporary processing data is purged after analysis. Scan results: scores, classifications, and verdicts may be shared to the community feed if auto-sharing is enabled (URL scans only, anonymous by default). You can disable this in Settings.
We send the following types of emails: account verification, scan results and alerts, engagement tips and feature updates, weekly safety digests, and subscription-related notifications. You can manage your email preferences in your profile settings or unsubscribe via the link in any email. Transactional emails (verification, password reset) cannot be unsubscribed.
Truvizy's Family Protection features are designed for parents and guardians to monitor and protect their children, including those under 13. Children under 13 may only use Truvizy under direct parental supervision through the Family Protection system. We do not knowingly collect personal information directly from children under 13 without verified parental consent. Parents or guardians can manage, review, and delete their child's data at any time through the Family Protection dashboard. All child monitoring data is processed on-device and never stored on our servers unless explicitly configured by the parent. If you believe a child has provided personal data without parental consent, contact us at privacy@truvizy.app.
You have the right to access your personal data, request correction of inaccurate data, request deletion of your account and all associated data (available from your Profile page), export your scan history, opt out of analytics tracking, and manage your ad and email preferences. For GDPR, CCPA, or other data protection requests, contact us at privacy@truvizy.app. We will respond within 30 days.
Account data is retained for as long as your account is active. Scan results are retained to provide your scan history and cached results. If you delete your account, all personal data is permanently removed within 30 days. Anonymous, aggregated analytics data may be retained indefinitely.
URL scan results (risk score, verdict, classification, and platform) are shared to the Truvizy community feed by default in anonymous form. No personally identifiable information is attached to auto-shared results. You may opt out of automatic sharing in your Settings at any time. File uploads (images, audio, video) are never auto-shared. They are only shared if you explicitly choose to do so. Only scan results (scores, classifications, verdicts) are ever shared to the community. Original media files are never shared. You may add optional captions to shared posts. Community reactions, comments, fact-check votes, and accuracy votes are associated with your account. You can delete your community posts at any time from the community feed. Community data is subject to the same retention and deletion policies as your account data. When you share scam experiences through the Share Experience feature (video, audio, document, or text submissions), your content is reviewed by our moderation team before publishing. Approved submissions earn credits and contribute to your contributor tier and trust score. Your contributor tier (Newcomer through Diamond) and trust score are visible on your posts and profile. Earnings history, submission status, and bounty participation are tracked in your Activity page.
Your public Trust Score is calculated based on the accuracy of your community contributions (reports, votes, bounty evidence). This score is visible to other users on your posts and profile. Your Trust Score determines your report weight (how much your votes influence moderation decisions). Trust Scores decay after 14 days of inactivity to encourage ongoing participation. You can view your score breakdown in your profile.
All community content (posts, comments, bounty submissions) is subject to automated multi-layer moderation including keyword filtering, evasion detection, semantic analysis, and AI classification. Content flagged by our systems may be held for review, rejected, or removed. Community members can report content that violates our guidelines. Posts receiving 3 or more reports are automatically hidden pending review. Posts receiving 5 or more reports are automatically removed. Users whose content is removed receive a strike. Moderation decisions can be appealed once per incident. All moderation actions are logged for audit purposes.
When you use the Email Inbox Scanner feature, Truvizy requests read-only access to your Gmail inbox via Google OAuth. We scan email headers, sender information, and content for phishing indicators, suspicious links, and scam patterns. We do not store, copy, or retain your email content. Only the scan results (risk scores and verdicts) are saved to your scan history. Your Gmail OAuth token is stored securely and can be revoked at any time from your Google Account settings or from within Truvizy. We never send emails on your behalf, access your drafts, or modify your inbox in any way.
Truvizy can analyze websites and PDF documents for scam indicators. For website scans, we analyze publicly accessible web page content, domain registration data, SSL certificates, and URL patterns. We do not store the full page content. Only analysis results are retained. For PDF scanning, uploaded documents are processed for embedded links, metadata, content patterns, and provenance markers. PDF files are stored securely during processing and available for user-initiated deletion.
Truvizy offers a Telegram bot and Chrome browser extension as additional access points to the scanning service. The Telegram bot processes URLs sent in chat messages and returns scan results. We store only the scan results, not your Telegram chat history or personal Telegram data. The Chrome extension operates locally in your browser and communicates with Truvizy servers only when you initiate a scan. Extension usage data follows the same privacy practices as the main application.
When you participate in the Community Rewards Program, we track your contribution history including submission count, approval/rejection status, credits earned, contributor tier, trust score, bounty participation, and weekly activity metrics. This data is used to calculate your tier, award credits, and display your contributor status. Your earnings history is visible only to you. Your contributor tier and trust score may be displayed on your public profile and community posts. You can view and manage your activity data from the Activity and Earnings page.
Approved community submissions may be incorporated into Truvizy's threat intelligence database in anonymized form. This includes scam patterns, URLs, phone numbers, and scam type classifications extracted from submissions. This data is used to improve detection capabilities for all users and may be shared in aggregated, anonymized form for public safety research purposes. No personally identifiable information is included in threat intelligence data.
We may update this policy from time to time. We will notify you of any material changes via email or in-app notification at least 14 days before they take effect. Continued use of Truvizy after changes constitutes acceptance of the updated policy.