Privacy Policy
How Trusul collects, uses, and protects your information.
Last updated: 2025
Trusul ("we," "us," "our") is an AI-powered content trust analysis platform. This policy explains what information we collect when you use Trusul, why we collect it, and how it's handled. Trusul is an early-stage product - this policy will be expanded as the platform adds features like real email delivery, third-party sign-in, and paid subscriptions.
Information We Collect
Username, email address, and a securely hashed password (bcrypt). We never store your password in plain text, and no one at Trusul can see it.
Article text or URLs you paste into the Analyzer or Compare tools, so we can generate and save your trust report. This is saved to your account's History so you can revisit it later.
How many checks you've run and when, so we can enforce Free plan daily limits and show you your own usage on the Dashboard.
If you message us via the Contact page, we store your name, email, subject, and message so our team can respond.
How We Use Information
- To provide the core service: analyzing content and generating trust reports.
- To enforce plan-based usage limits (e.g. the Free plan's daily check limit).
- To show you your own account history, dashboard stats, and saved reports.
- To respond to support requests submitted via the Contact page.
- To maintain the security of your account (password hashing, session tokens).
We do not sell your personal information, and we do not use your submitted content to train third-party advertising profiles.
Third-Party Services
To help verify claims, Trusul can optionally query external services - currently the Google Fact Check Tools API and NewsData.io - sending short excerpts of the content you submit so we can check it against known fact-checks and cross-source news coverage. These services only receive what's needed to run the check; they are not used on every request, and Trusul works even when they're not configured. If a real email provider (such as Resend or SMTP) is configured for password resets, your email address is shared with that provider only to deliver the reset code.
Data Storage & Security
Passwords are hashed with bcrypt, never stored or logged in plain text. Sessions are authenticated with signed JWT tokens. In local development, Trusul stores data in a local SQLite database; as the product moves toward production, this will move to a managed database with stronger operational safeguards (see our roadmap for what's planned). No system is perfectly secure, and we can't guarantee absolute security - but we don't store more than we need to run the service.
Cookies & Local Storage
Trusul stores your login session token in your browser's local storage so you stay signed in. We do not use third-party advertising cookies or cross-site tracking.
Your Choices
You can delete individual saved reports from your History at any time. Self-service account deletion and full data export are on our roadmap; until then, contact us via the Contact page and we'll handle your request directly.
Children's Privacy
Trusul is not directed at children under 16, and we do not knowingly collect personal information from children under that age.
Changes to This Policy
As Trusul adds features - real email delivery, Google Sign-In, subscription billing, production hosting - this policy will be updated to reflect them. We'll update the "Last updated" date above when that happens.
Questions?
Reach out any time via the Contact page.