Privacy Policy

GraphAura ("we", "us", or "the Service") is a social network visualization platform. This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using GraphAura, you agree to the practices described herein.

We do not require registration. GraphAura has no user accounts, no login mechanism, and does not ask for your name, email address, or any personal identifiers.

Publicly available social data. When you search for a public figure, we process publicly accessible profile information and follower/following relationships from X (Twitter). This data is already visible to any internet user and is sourced through official platform APIs.

Account requests. If you submit a request to add a profile, we store the handle you entered and your anonymized IP address solely to process the request and prevent abuse.

Automatically collected technical data. Our hosting provider (Vercel) may log standard request metadata such as IP addresses, browser type, and timestamps. These logs are retained for a limited period and used exclusively for security and operational purposes.

We use the data described above exclusively to:

• Generate and display interactive social network graphs
• Enrich public profile data with AI-generated classifications (category, influence score)
• Cache results to improve performance and reduce redundant API calls
• Monitor service health, prevent abuse, and fix errors

Graph data derived from public social profiles is cached in our database to serve repeat requests efficiently. Cached data is periodically refreshed - typically every 7 to 30 days depending on the profile. We do not maintain permanent archives of social data and may delete cached entries at any time.

If you would like cached data related to a specific public profile removed, contact us at the address below and we will process your request within a reasonable timeframe.

GraphAura does not set first-party cookies. We use Plausible Analytics, a privacy-focused, cookie-free analytics tool that does not collect personal data, does not use fingerprinting, and is fully compliant with GDPR, CCPA, and PECR without requiring consent banners.

GraphAura may display advertisements through Google AdSense. Google may use cookies or device identifiers to serve ads based on your browsing activity. You can manage your ad preferences or opt out of personalized advertising at Google Ads Settings or aboutads.info.

We use the following third-party processors, each operating under its own privacy policy:

• Vercel - hosting and serverless functions
• Supabase - PostgreSQL database hosting
• Anthropic (Claude) - AI classification of public profiles (offline pipeline only)
• Plausible Analytics - privacy-focused, cookie-free website analytics
• Google AdSense - advertising (may set third-party cookies)

We implement reasonable technical and organizational measures to protect the data we process, including encrypted connections (HTTPS), access controls, and regular security reviews. However, no system is completely secure, and we cannot guarantee absolute security.

GraphAura is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

Depending on your jurisdiction, you may have the right to access, correct, or delete data we hold about you, or to object to its processing. Since we do not collect personal information tied to user identities, most of these rights are satisfied by default. For any data-related requests, contact us below.

We may update this Privacy Policy from time to time. Material changes will be reflected in the "Last updated" date at the top of this page. Continued use of GraphAura after changes constitutes acceptance of the updated policy.

For questions, concerns, or data removal requests, reach us at graphaura@gmail.com. We aim to respond within 48 hours.