EU Green Chatbot
🌍 EU Resources📋 Policies🛡️ AI Act Compliance🏗️ Architecture🔒 Privacy📄 Termsℹ️ About
View on GitHubSupport Project

Privacy Policy

Your privacy is important to me. Learn how I collect, use, and protect your information.

Privacy Overview

I am committed to protecting your privacy with a privacy-first architecture. Your chat conversations are stored locally in your browser only - I never store your conversation history on external servers.

My practices comply with the EU General Data Protection Regulation (GDPR) and give you complete control over your personal conversation data.

Privacy-First Approach

  • • Chat history stored locally in your browser only
  • • Multiple chat sessions for topic organization
  • • No external servers store your conversations
  • • GDPR compliant with user data control
  • • Transparent AI processing with source attribution
  • • Clear data only when you clear browser cache

Multiple Chat Sessions & Local Storage

How Chat Sessions Work

  • Multiple Sessions: Create separate conversations for different EU policy topics (e.g., "CBAM Questions", "Circular Economy Research")
  • Session History: Each session maintains its own conversation history and context
  • Language Persistence: Each session remembers your detected language preference
  • Easy Management: Switch between sessions via the history menu with clear session titles

Local Browser Storage Details

  • localStorage: All chat data stored in browser's localStorage (not cookies)
  • Device-Specific: Data stays on your device - not synced across devices
  • No External Backup: I do not backup or store your conversations on my servers
  • User Control: You can delete individual sessions or clear all data via browser settings

Technical Note: Your chat data is stored as JSON in localStorage with session IDs. Data persists until you clear browser cache, delete sessions manually, or uninstall your browser.

What Gets Stored Locally

  • • Chat messages (your questions and Verdana's responses)
  • • Session metadata (titles, creation dates, last activity)
  • • Language preferences per session
  • • AI consent acknowledgment status
  • • Current session identifier

Privacy Guarantee: This data never leaves your browser unless you explicitly share chat content. We cannot access your stored conversations.

Information I Collect

Chat Data Processing

Important: Your chat conversations are processed through our multi-agent AI system which includes PostgreSQL vector database for document retrieval, web research capabilities via Tavily/Firecrawl APIs, and OpenAI for response generation. No personal conversation history is permanently stored.

Temporary Processing

During your session, I temporarily process:

  • • Your questions (processed through our RAG system and OpenAI API)
  • • Document search queries (for policy information retrieval)
  • • Web research verification data (via Tavily/Firecrawl)
  • • AI responses (generated and displayed)
  • • Language preferences (stored locally in your browser)
  • • EU AI Act consent status (stored locally in your browser)

Technical Information

Standard web server logs may temporarily record:

  • • IP addresses (for security and rate limiting)
  • • Browser type (for compatibility)
  • • Pages visited (for analytics)
  • • Access timestamps (for monitoring)

These logs are automatically purged and contain no personal data.

Third-Party Services

I use multiple third-party services for AI processing:

  • OpenAI API: For AI response generation
  • Tavily API: For web search and verification
  • Firecrawl API: For detailed web content extraction
  • • Data subject to respective third-party privacy policies
  • • Temporary processing only, no long-term storage by us

How I Process Your Information

Real-time Processing

  • • Search EU policy documents in our knowledge base
  • • Verify information with real-time web research
  • • Generate AI responses using OpenAI
  • • Display verified, source-backed answers
  • • Maintain conversation context during session
  • • Support multiple European languages

No Long-term Storage

  • • No conversation history retained
  • • No user profiles created
  • • No personal data databases
  • • Session data cleared on browser close

Privacy by Design: Our architecture ensures your conversations remain private by not storing any personal data on our servers.

Your Rights Under GDPR

Right to Access

Request access to your personal data I hold.

Right to Rectification

Correct inaccurate or incomplete data.

Right to Erasure

Request deletion of your personal data.

Right to Portability

Receive your data in a portable format.

Right to Object

Object to certain types of data processing.

Right to Withdraw

Withdraw consent for AI interactions.

Data Security & Retention

Security Measures

  • • Encrypted data transmission (HTTPS)
  • • Secure API communication with OpenAI
  • • No server-side data storage
  • • Browser-only session management

Data Retention

  • • Chat data: Not stored on our servers
  • • Technical logs: Minimal, auto-purged
  • • User preferences: Browser local storage only
  • • Personal data: Zero retention policy

Third-Party Data Handling

Your messages are processed by OpenAI, Tavily, and Firecrawl according to their respective data usage policies. I recommend reviewing each service's privacy policy for details on their data handling practices.

International Data Transfers

My services primarily operate within the European Union. Any international data transfers are conducted with appropriate safeguards in compliance with GDPR requirements.

Transfer Safeguards

  • • Adequacy decisions where applicable
  • • Standard contractual clauses
  • • Additional technical and organizational measures

Contact & Questions

If you have questions about this Privacy Policy or want to exercise your rights, please contact us at: e.covasa@me.com

Last Updated: January 2025
Review Schedule: Annually or as needed for regulatory changes