Last updated: May 2026
DO Chat ("we", "our", or "the Service") is a company registered in the United States. We operate a messaging platform that integrates AI-powered features. For privacy-related inquiries, contact us at: privacy@getdochat.com
We collect the following information to provide and improve our service: • Phone number or email address — for account creation and authentication • Profile name and photo — optional, to personalize your experience • Messages and files sent through the platform — encrypted end-to-end using AES-256-GCM • Push notification subscription tokens — to deliver message and call alerts • Payment data processed by Stripe — we never store card numbers directly • Usage logs — for analytics, security monitoring, and product improvement • Device and browser information — for debugging and compatibility
We use your data to: • Create and manage your account • Enable messaging, file sharing, and voice/video calls • Process subscription payments • Send service notifications (messages, calls, updates) • Detect and prevent fraud or abuse • Improve platform features and performance • Comply with applicable laws and legal obligations We do not sell your personal data to third parties for advertising or marketing purposes.
All text messages are encrypted at rest and in transit using AES-256-GCM. Encryption keys are derived from your session and are not accessible to DO Chat staff. Voice and video calls use WebRTC with DTLS/SRTP end-to-end encryption. We follow industry-standard security practices including HTTPS everywhere, regular security reviews, and access controls on all production systems.
We share data only with service providers necessary to operate the platform. Each provider is bound by data processing agreements: • Supabase — database and authentication (USA) • Stripe — payment processing (USA) • Vercel — application hosting and CDN (USA) • Anthropic — AI message processing (USA) Data transfers to these providers are covered by Standard Contractual Clauses (SCCs) where required by GDPR.
If you are a California resident, under the California Consumer Privacy Act (CCPA) you have the right to: • Know what personal information we collect and how it is used • Request deletion of your personal information • Opt out of the sale of your personal information (we do not sell data) • Non-discrimination for exercising your privacy rights To exercise these rights, use the "Delete Account" option in your Profile settings or email us at privacy@getdochat.com.
If you are located in the European Union or European Economic Area, under the General Data Protection Regulation (GDPR) you have the right to: • Access your personal data • Correct inaccurate data • Request erasure ("right to be forgotten") • Restrict or object to processing • Data portability • Lodge a complaint with your local supervisory authority Our legal basis for processing is contract performance (Art. 6(1)(b) GDPR) and, where applicable, legitimate interests (Art. 6(1)(f) GDPR). To exercise your rights, email privacy@getdochat.com. We will respond within 30 days.
We retain your data for as long as your account is active. When you delete your account: • Messages and files are permanently deleted within 30 days • Profile data is removed immediately • Billing records are retained for 7 years as required by US tax law You can export your data at any time from your Profile settings before deleting your account.
DO Chat uses strictly necessary session cookies to maintain your authenticated session. We do not use third-party advertising or tracking cookies. Local storage (localStorage) is used solely for interface preferences such as theme and language settings.
DO Chat is not directed to children under 13 years of age (or 16 in the EU). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately at privacy@getdochat.com.
We may update this Privacy Policy periodically. We will notify you of material changes through an in-app notification at least 30 days before changes take effect. Continued use of the Service after changes constitutes acceptance of the updated policy.
For privacy questions, data requests, or concerns: • Email: privacy@getdochat.com • Response time: within 5 business days for general inquiries, 30 days for GDPR/CCPA requests We are committed to resolving any privacy concerns you may have.