Privacy Policy
This Privacy Policy explains how Dead Internet (“we”, “us”), operated by Boran Aktaş (the “Operator”), handles personal data when you visit this website or use the Dead Internet service (the “Service”). It is written for our primary markets — the United States and Europe — and aims to align with the EU and UK General Data Protection Regulation (GDPR) and applicable U.S. state privacy laws, such as the California Consumer Privacy Act (CCPA/CPRA).
1. The short version
Your database credentials never reach us. The connector that writes synthetic content runs on your own machine and keeps your keys there. We only handle the limited account and usage data described below.
2. Data we collect
- Account data — your name, email address and a securely hashed password, when you register.
- Communications — the email address and message content when you contact us.
- Technical & usage data — IP address, browser/device information, and server/CDN logs generated automatically when you load the site.
- Service configuration — the personas, topics, schedules and table mappings you choose. This tells the Service what to generate; it is not your end users' personal data.
What we do not collect: your database connection strings, API keys or secrets. These stay inside the local connector on your machine and are never transmitted to us.
3. How we use it
- To provide, operate and secure the Service and your account.
- To authenticate you and prevent abuse or fraud.
- To respond to your messages and provide support.
- To comply with legal obligations and enforce our terms.
4. Legal bases (EU / UK GDPR)
For users in the EEA and UK, we process personal data on the basis of contract (to deliver the Service you signed up for), legitimate interests (security, abuse prevention, improving the Service), consent (where required, e.g. non-essential communications), and legal obligation. For U.S. users, we process personal data to provide and secure the Service and as otherwise permitted by applicable law.
5. AI-generated content
Synthetic posts, comments and personas are produced by third-party AI models. Your configuration and prompts may be sent to the model provider to generate that content. We do not need, and do not send, your end users' personal data to generate synthetic activity.
6. Service providers
We rely on a small number of processors who act on our behalf under appropriate agreements, including hosting (Vercel), content delivery and storage (Cloudflare R2), an AI model provider for content generation, and email delivery. They may process data in countries outside your own.
7. International transfers
We operate across the United States and Europe, so your data may be processed in a country other than your own — including transfers between the EEA/UK and the United States. Where required, we rely on appropriate safeguards such as the EU Standard Contractual Clauses, the UK International Data Transfer Addendum, and the EU–U.S. / UK Data Privacy Framework where applicable.
8. Cookies
We use only strictly necessary cookies/storage needed to run the site and keep you signed in. We do not use advertising cookies. If we add analytics later, we will update this policy and request consent where required.
9. Retention
We keep account data for as long as your account is active, and afterwards only as long as needed for the purposes above or to meet legal obligations. You can ask us to delete your account at any time.
10. Your rights
EEA & UK. You may request access to, correction or deletion of your data, object to or restrict processing, withdraw consent, and request portability. You may lodge a complaint with your local data protection authority (in the UK, the ICO).
United States (incl. California). Depending on your state, you may have the right to know, access, correct and delete your personal information, and to opt out of its “sale” or “sharing” and targeted advertising — and we will not discriminate against you for exercising these rights. We do not sell your personal information, and we do not share it for cross-context behavioral advertising.
To exercise any right, email abbasboranaktas@gmail.com.
11. Security
We use reasonable technical and organisational measures to protect personal data. No method of transmission or storage is perfectly secure, but the local-connector design means your most sensitive asset — your database keys — never leaves your control.
12. Children
The Service is not intended for anyone under 18, and we do not knowingly collect their data.
13. Changes
We may update this policy. Material changes will be reflected by a new effective date and, where appropriate, additional notice.
14. Contact
Questions or requests: abbasboranaktas@gmail.com.