Privacy

1. What the site does

The site has a public landing page, three legal pages (this one, terms, security), and a single API route at /api/lab that forwards numeric score arrays to the CI-1T engine and returns the engine's response.

2. What we collect

• In-memory rate-limit state: when you use the demo, your client IP (or x-forwarded-for value, if the request goes through a proxy) is held in process memory along with request timestamps so the demo can enforce a per-IP rate limit. This state is not written to disk and is lost on every server restart.
• Hosting-provider request logs: Render, the host, keeps standard server logs (timestamps, paths, response codes, source IPs) per its own infrastructure policy. We do not export, mirror, or analyze those logs.
• The scores you submit: the numeric values you paste into the demo are forwarded to the engine and used to compute the response. They are not logged, stored, or used for anything else.

3. What we do not collect

• No accounts. There is no signup, login, OAuth, or password.
• No payments. The previous Stripe integration has been removed.
• No cookies, no local storage usage, no analytics scripts, no tracking pixels, no fingerprinting.
• No raw text or images. The engine only accepts numeric scores.
• No personal data of any kind beyond what is described in section 2.

4. Third parties

• Render: hosts the website and the engine. Standard infrastructure logs apply.
• GitHub: the source code, SDK, and engine are hosted on GitHub. Visiting GitHub links from this site is subject to GitHub's own policies.
• Google Fonts: the page loads two webfonts from fonts.googleapis.com. Disable third-party fonts in your browser if this matters to you.

We do not use any analytics, advertising, or tracking services.

5. Contact

Privacy questions, data requests, or concerns: ask@collapseindex.org.