π Privacy policy
Neurallux (the βServiceβ, βPlatformβ, βweβ) respects your privacy and is committed to protecting personal data. This Privacy Policy explains what we collect, how we use, store, and safeguard it.
1Data we collect
1.1 Registration data:
- β’Username
- β’Email address
- β’Password (stored hashed/encrypted)
1.2 Telegram account data:
- β’Phone number linked to the account
- β’Telegram API hash and ID (provided by you)
- β’Telegram session tokens (stored encrypted)
1.3 Platform activity data:
- β’Actions inside the automation builder
- β’Block usage statistics
- β’Workflow data (branches, conditions, actions)
- β’Error logs and UI interaction logs
1.4 Financial and billing data:
- β’Purchase and top-up history
- β’Transaction details (date, amount, payment method)
- β’Payment operation identifiers (we do not store full card numbers)
1.5 Technical data:
- β’IP address, browser, and device information
- β’Cookies and auth tokens
- β’Login times and session duration
2How we use data
We use collected data to:
- β’provide access to the Service;
- β’connect and manage Telegram accounts;
- β’configure and run automation;
- β’process payments, track credits, and renew active resources;
- β’provide AI integrations (OpenAI, DeepSeek, Gemini, etc.);
- β’improve the Service (analytics, diagnostics, optimization);
- β’support users and respond to feedback;
- β’meet legal and tax obligations.
3Storage and security
- πSensitive data (Telegram sessions, passwords, tokens, financial identifiers) is encrypted.
- π₯Access is restricted to staff who need it for their duties.
- π‘οΈWe use industry-standard measures such as SSL, AES-256, backups, and log auditing.
- π¬Telegram chat content is not stored unless you explicitly enable that in workflow settings.
4Payment processor data
- β’We do not store full card numbers or payment passwords.
- β’Processing is performed by licensed payment processors that meet PCI DSS requirements.
- β’We receive only transaction IDs and status information needed to credit balances and activate resources.
5Your rights
You have the right to:
- βοΈrequest access to your data;
- βοΈrequest corrections;
- ποΈdelete your account and related data;
- π«withdraw consent to processing where applicable;
- π°request deletion of transaction history except where retention is required by law;
- πlodge a complaint with a supervisory authority if your rights are violated.
To exercise these rights, contact us at support@zerafy.com or Telegram.
6Retention
- β’Data is kept only as long as needed to provide the services.
- β’After account deletion, personal data is permanently erased except records required for accounting.
- β’Financial records (top-ups, debits) may be retained in encrypted form for the period required under applicable accounting and tax rules.
7Sharing with third parties
We may share limited data with:
- β’payment operators β to process transactions;
- β’AI and cloud API providers (OpenAI, DeepSeek, Gemini, etc.) β to fulfill requests;
- β’government authorities β upon lawful official request.
Transfers are encrypted and limited to the minimum necessary.
8Applicable law and standards
We aim to align our processing with widely recognized data-protection standards, including GDPR-style rights where they apply. Your specific rights and remedies depend on the laws of your country or region of residence, including any mandatory consumer or privacy rules that cannot be waived by contract.
9Policy updates
- β’We may change this Policy at any time.
- β’Updates take effect when the revised version is published on the site.
- β’Material changes may also be communicated by email.