Privacy Policy - Qwip AI Detection

TL;DR - The Privacy Promise

Your images never leave your device. Period.

We don't collect, store, or transmit your images to our servers. We don't track you, profile you, or sell your data. The only thing we store are anonymous mathematical hashes (fingerprints) that you optionally contribute to help the community.

This isn't marketing speak - it's architectural fact. Our system is designed so that it's technically impossible for us to see your images.

What Data We Collect (And Don't Collect)

Data Type	Collected?	Details
Images	❌ NEVER	All ML processing happens in your browser. Images never leave your device.
Personal Information	❌ NO	No names, emails, phone numbers, or any personally identifiable information.
Tracking Cookies	❌ NO	No cookies, no tracking pixels, no analytics scripts.
Browsing History	❌ NO	We don't know what websites you visit or what you look at.
Device Fingerprints	❌ NO	No browser fingerprinting, canvas tracking, or similar techniques.
Cryptographic Hashes	✅ YES (optional)	Only if you enable "Contribute to Database". See below for details.
Server Logs	✅ YES (minimal)	Standard server logs (IP, timestamp, request path) for rate limiting. Auto-deleted after 7 days.

The Hash System Explained

When you enable "Contribute to Database" (it's on by default but you can turn it off), the extension computes mathematical "fingerprints" of images and sends these to our community database.

What Gets Sent to Our Servers

BLAKE3 Hash: A 64-character hexadecimal string (e.g., a7f3d8c9...)
5 Perceptual Hashes: Large numbers representing image features
Detection Result: Whether the model thinks it's AI or real (boolean)
Confidence Score: A number between 0 and 1
Model Name: Which model was used (e.g., "cifake" or "genimage")

What NEVER Gets Sent

The actual image pixels
The image URL or source website
Your user ID or any identifier
Your IP address (not stored with the hash)
Metadata like location, camera model, etc.

🔒 Why This Matters

Hashes are one-way functions. Given a hash, it's computationally infeasible to reconstruct the original image. Even if our entire database leaked, attackers couldn't recover your images.

This is fundamentally different from cloud-based AI detection services that require uploading your actual images.

Server Logs & Retention

What Our Servers Log

Our API server (api.qwip.io) runs on Vercel and maintains standard HTTP access logs:

IP Address: For rate limiting (prevents spam/abuse)
Timestamp: When the request was made
Request Path: Which API endpoint was called (/api/check or /api/contribute)
HTTP Status: Success or error code

Retention Policy

Hash Database: Stored indefinitely (anonymous, no PII)
Server Access Logs: Auto-deleted after 7 days
Error Logs: Auto-deleted after 30 days

IP addresses in logs are never associated with the hash data you contribute. They exist only for rate limiting and are deleted quickly.

Your Privacy Rights & Controls

You Control Everything

The extension settings give you full control:

Toggle Server Queries: Turn off the "Query Server Database" setting to work completely offline. No network requests will be made.
Toggle Contributions: Turn off "Contribute to Database" to prevent sending detection results to the community database.
Local-Only Mode: Disable both settings above to run in fully local mode with zero network activity.
Clear Local Data: Use your browser's extension data clearing to remove cached results stored locally.

GDPR & CCPA Compliance

Because we don't collect personal information, most data protection regulations don't apply to our core functionality. However, we're designed to exceed these standards:

Right to Access: You can query our API to see if a specific hash exists
Right to Deletion: Contact us to remove specific hashes from the database
Right to Opt-Out: Disable contributions in settings at any time
Data Portability: All contributed data is queryable via our public API

Security Measures

How We Protect Your Data

HTTPS Everywhere: All API communication uses TLS 1.3 encryption
Rate Limiting: Prevents spam and abuse (100 requests per minute per IP)
No Authentication: No passwords to leak, no accounts to hack
Minimal Attack Surface: Simple read-only API with no user data
Open Source: Code is public for security audits

What Happens If We Get Hacked?

In the unlikely event our database is compromised, attackers would gain:

A list of cryptographic hashes (useless without the original images)
Detection results (AI or real) for those hashes
No personal information, images, or user identities

⚠️ Theoretical Privacy Risks

Hash Collision Analysis: In theory, if an attacker has a large database of known images and their hashes, they could match your contributed hashes to identify which images you viewed. This is why we use multiple hash types and don't store URLs.

Timing Attacks: Server response times could theoretically leak information. We add random delays to prevent this, but it's a known limitation.

We document these risks because transparency matters. For maximum privacy, use local-only mode.

Third-Party Services

Services We Use

Vercel (Hosting): Our API runs on Vercel's infrastructure. They have their own privacy policy.
Vercel Postgres (Database): Hash data is stored in Vercel's managed PostgreSQL.
Chrome Web Store (Distribution): Google's policies apply when you install the extension.

We chose Vercel because they're SOC 2 compliant and don't scan or mine customer data.

Children's Privacy

Our service is not directed at children under 13. We don't knowingly collect data from children. If you believe a child has contributed data, contact us to remove it.

Changes to This Policy

We'll update this policy if our privacy practices change. Material changes will be announced:

On this page with an updated "Last Modified" date
Via a banner in the extension (for significant changes)
On our GitHub repository changelog

Continued use after changes constitutes acceptance. If you disagree, disable server features or uninstall the extension.

Contact & Questions

If you have privacy questions or want to exercise your rights:

Email: privacy@qwip.io
GitHub Issues: quip-ai/quip
Response Time: We aim to respond within 72 hours

🛡️ Our Privacy Commitment

Privacy isn't a feature we added - it's the foundation of our architecture. We can't see your images even if we wanted to. We can't track you even if someone paid us to.

This is by design, not by promise. Trust, but verify: our code is open source.