We collect the minimum data needed to compute your chart and run the service. We do not sell your data. We do not advertise. You can delete everything at any time. Here's the full breakdown.
1 · What we collect
| Data | Why we collect it |
|---|---|
| Email address | Sign-in via magic link (no password) |
| Full name | Personalising readings and greetings |
| Birth date, time, place | Computing your Vedic birth chart (core service) |
| Gender | Gender-specific astrological calculations (e.g. Stree Jataka) |
| Chat history | Maintaining conversation context within your account |
| Usage metrics | Token budget tracking, abuse prevention |
All payments are processed by Razorpay under their PCI-DSS compliance. No card numbers, CVVs, or banking details are ever stored on our servers.
2 · How we use your data
Your birth details are used solely to compute your chart and generate readings. Your email is used only for sign-in magic links and essential account communication. We do not use your data for advertising, and we do not sell it to third parties. Full stop.
3 · Who else sees your data
A small number of sub-processors handle specific technical functions. Each receives only what they need:
| Sub-processor | What they receive | Why |
|---|---|---|
| OpenAI (GPT API) | Chart analysis data + your questions (anonymised — no email or raw birth details sent) | AI narration of readings |
| Resend | Your email address | Delivering sign-in magic links |
| Sentry | Your user ID (no PII) | Debugging production errors |
| Google Fonts | Your IP address (via browser request) | Loading the Outfit and Fraunces typefaces |
| Google Translate | Page content + your IP (via browser widget) | Hindi translation (optional) |
No other parties receive your data.
4 · Data storage
Your data is stored in an SQLite database on encrypted infrastructure on our servers, hosted on Railway (US-West region). Chat history is capped at 50 messages per user. Daily backups are retained for 30 days. All data in transit is protected by HTTPS/TLS.
5 · Your rights
Under India's Digital Personal Data Protection Act, 2023 (DPDP) and the EU's GDPR, you have the following rights:
- Access — request a copy of your stored data
- Delete — permanently delete your account and all associated data via the account settings page, or by emailing us
- Correct — update your name, email, or contact details at any time
- Withdraw consent — stop using the service and request data deletion; we'll process within 30 days
- Object / restrict — ask us to limit how we process your data
- Portability — receive your data in a machine-readable format
To exercise any of these rights, email hello@oraclevedicastro.com from the email address registered with your account.
6 · Cookies
We use a single essential cookie for session authentication. No tracking cookies, no advertising pixels, no third-party analytics beyond anonymised error monitoring.
7 · Children
Oracle Engine is not directed at children under 18. We do not knowingly collect data from children. If you believe a minor has created an account, please email us and we will delete the data immediately.
8 · International transfers
Our servers are located in the United States (Railway, US-West). By using the service from India or elsewhere, you consent to your data being processed in the US. All sub-processors adhere to either GDPR-compliant SCCs or equivalent safeguards.
9 · Changes to this policy
We'll notify registered users by email of any material changes to this policy. Minor updates (spelling, formatting) will be reflected in the "Last updated" date above.
10 · Contact
Privacy questions, data requests, or concerns: hello@oraclevedicastro.com