← Back to Justitia AI

Privacy Policy

Last updated: February 19, 2026

1. Who We Are

Justitia AI ("we", "us", "our") is a scam and fraud detection service available via mobile app, browser extension, and Telegram bot. This policy explains how we collect, use, and protect your information.

Contact: support@bbn.beauty

---

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address
  • Password (hashed, never stored in plain text)
  • Telegram ID (if you connect via Telegram)

    • 2.2 Content You Submit for Analysis

    When you use Justitia AI to analyze content, we process:

  • Screenshots you upload
  • URLs you submit
  • Social media usernames you enter
  • Web page content passed from the browser extension
    • Important: Content submitted for analysis may contain personal information about third parties. You are responsible for ensuring you have the right to submit such content.

    2.3 Usage Data

    We automatically collect:

  • Scan history (analysis results linked to your account)
  • Number of scans used and remaining credits
  • Timestamps of scans
  • Source of scan (mobile app, extension, Telegram)
  • Token usage and cost per scan (for internal billing purposes)

    • 2.4 Anonymous Usage

    For unauthenticated users (browser extension), we collect a browser fingerprint to enforce the free scan limit (3 scans). No personal data is stored for anonymous users beyond this fingerprint and scan count.

    2.5 Payment Information

    Payments are processed by Stripe. We store your Stripe customer ID to link purchases to your account. We do not store card numbers or full payment details — those are handled entirely by Stripe. See Stripe's Privacy Policy.

    ---

    3. How We Use Your Information

  • To provide and improve the scam detection service
  • To manage your account and credit balance
  • To process payments and fulfill scan pack purchases
  • To send transactional notifications (e.g., payment confirmations via Telegram)
  • To monitor usage for abuse prevention and service integrity
  • To analyze aggregate usage patterns and improve AI accuracy

    • ---

    4. Data Sharing

    We do not sell your personal data. We share data only with:

  • Supabase — database and authentication provider
  • Stripe — payment processing
  • AI model providers — content submitted for analysis is sent to AI APIs for processing (e.g., OpenAI or Anthropic). These providers process data under their own privacy policies and data processing agreements.
  • Telegram — if you use the Telegram bot, messages are processed through Telegram's platform
  • Law enforcement — if required by law or to protect rights and safety

    • ---

    5. Data Retention

  • Account data is retained while your account is active
  • Scan history is retained for 12 months by default
  • Anonymous usage records (fingerprint + count) are retained for 30 days
  • You may request deletion of your data at any time (see Section 8)

    • ---

    6. Cookies and Tracking

    The mobile app does not use cookies. The browser extension may use local storage to maintain session state. We do not use third-party advertising trackers.

    ---

    7. Security

    We use industry-standard security practices including:

  • Encrypted connections (HTTPS/TLS) for all data in transit
  • Supabase Row Level Security (RLS) to ensure users can only access their own data
  • JWT-based authentication with short-lived tokens
  • No plain-text storage of passwords or payment details

    • No system is 100% secure. If you discover a security vulnerability, please contact support@bbn.beauty.

    ---

    8. Your Rights

    Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data ("right to be forgotten")
  • Export your data in a portable format
  • Object to or restrict certain processing

    • To exercise these rights, email support@bbn.beauty. We will respond within 30 days.

    ---

    9. Children's Privacy

    Justitia AI is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe a child has provided us with personal data, contact us and we will delete it.

    ---

    10. GDPR — EU/EEA Users

    If you are located in the EU or EEA, the following applies under the General Data Protection Regulation (GDPR):

  • Data Controller: Justitia AI, Poland
  • Legal bases for processing: Contract performance (providing the Service), legitimate interests (fraud prevention, service improvement), and consent where applicable
  • Your GDPR rights: Access, rectification, erasure, restriction, portability, and the right to object
  • Right to lodge a complaint: You may file a complaint with the Polish data protection authority (UODO — Urząd Ochrony Danych Osobowych): https://uodo.gov.pl

    • 11. International Transfers

    Your data may be processed in countries outside the EU/EEA (e.g., the United States, where Supabase, Stripe, and AI providers operate). We rely on Standard Contractual Clauses (SCCs) and our service providers' adequacy frameworks to ensure adequate protection in line with GDPR Chapter V.

    ---

    12. Changes to This Policy

    We may update this policy from time to time. We will notify you of material changes via email or in-app notification. Continued use after changes constitutes acceptance.

    ---

    13. Contact

    For privacy-related questions: support@bbn.beauty

    For GDPR requests: support@bbn.beauty (we respond within 30 days as required by law)