================================================================================
PRIVACY POLICY
================================================================================
Document ID: GNS-AI-PRIV-2026-V3
Effective: 16 April 2026
Jurisdiction: England & Wales
================================================================================
CONTENTS
================================================================================
1. Introduction
2. Data We Collect
3. How We Use Data
4. Data Storage and Security
5. Third-Party Sharing
5.1 External API Data Flow
6. User Rights
7. Cookies and Tracking
8. Children's Privacy
8.1 Child-Friendly Summary
9. Policy Changes
10. Contact Information
================================================================================
1. INTRODUCTION
================================================================================
This Privacy Policy ("Policy") governs the collection, use, storage, and
disclosure of information by James Turner (XPDevs) ("Proprietor") in
connection with the Genesis AI web application ("Service").
CORE PRINCIPLE:
Genesis AI is designed with privacy as a foundational principle. The Service
operates predominantly on a client-side basis, meaning that User data is
processed locally within the User's browser and is not transmitted to
external servers unless specifically required for opt-in features.
The Proprietor does not maintain any central database of User communications
or personal data. All processing occurs locally on the User's device.
By using the Service, the User acknowledges and agrees to the practices
described in this Policy.
================================================================================
2. DATA WE COLLECT
================================================================================
The following table outlines the types of data that may be collected or
processed through the Service:
DATA TYPE | SOURCE | STORAGE LOCATION | TRANSMITTED?
---------------------|-------------------|---------------------|---------------
Chat Messages | User Input | IndexedDB | No
User Preferences | User Settings | LocalStorage | No
Theme Settings | User Selection | LocalStorage | No
Chat History | User Activity | IndexedDB | No
Profile Information | Google Sign-In | LocalStorage | No (optional)
Voice Input | Browser API | Browser Memory | No
LOCAL STORAGE ONLY:
The Proprietor does not collect, store, or transmit User data to any
external servers for the core chat functionality. All data remains on
the User's device.
OPT-IN FEATURES:
Only the following features involve external data transmission:
- Google Sign-In: Authentication tokens sent to Google
================================================================================
3. HOW WE USE DATA
================================================================================
Data collected through the Service is used for the following purposes:
SERVICE DELIVERY:
To provide chat functionality and respond to User queries using the local
modal and pattern matching engine.
SESSION PERSISTENCE:
To maintain conversation history across browser sessions so users can
resume conversations later.
USER PREFERENCES:
To remember theme settings (light/dark mode), interface preferences, and
other user-configurable options.
FEATURE FUNCTIONALITY:
To enable optional features such as Google Sign-In authentication and
to provide access to third-party services when explicitly requested.
NO ANALYTICS:
The Service does not employ analytics, tracking, or profiling. No User
data is used for advertising, marketing, or commercial purposes.
================================================================================
4. DATA STORAGE AND SECURITY
================================================================================
4.1 LOCAL STORAGE
All User data, including chat messages and preferences, is stored locally
on the User's device using browser storage mechanisms:
- IndexedDB: For chat messages and conversation history
- LocalStorage: For user preferences and theme settings
The Proprietor does not have access to this data. The data cannot be
retrieved or viewed by the Proprietor through any technical means.
4.2 SECURITY MEASURES
Data stored locally is protected by the security measures inherent to
the User's browser and device. This includes:
- Browser sandboxing
- Encryption provided by the browser
- Device-level security (passwords, biometrics, etc.)
Users are responsible for maintaining the security of their devices
and browsers. The Proprietor cannot protect data stored on the User's
device beyond what the browser provides.
4.3 DATA RETENTION
User data is retained locally until:
- The User manually deletes it using the Service's "Clear All Chats" function
- The User clears their browser storage/cache
- The user manually removes specific chats
There is no automatic data expiration. Data persists indefinitely until
the User chooses to delete it.
4.4 DATA DELETION
To delete all local data:
- Use the Service's built-in "Clear All Chats" feature
- Or clear browser storage in your browser settings
Once deleted, data cannot be recovered.
================================================================================
5. THIRD-PARTY SHARING
================================================================================
While core chat logic occurs locally, specific features (such as Image
Generation or Wikipedia Lookups) require sending your specific prompt to
external providers. Only the minimum data required to fulfill the request
is shared. No personal identification, account details, or session history
are ever transmitted to these third-party services.
The following table identifies features that involve data transmission
to third parties:
FEATURE | THIRD PARTY | DATA TRANSMITTED | PRIVACY POLICY
--------------------|----------------|-------------------------|------------------
Google Sign-In | Google LLC | Authentication tokens | Google Privacy
Voice Input | Browser Vendor | Audio (processed locally)| Browser Policy
Web Hosting | GitHub Pages | Standard server logs | GitHub Privacy
5.1 GOOGLE SIGN-IN
Users may optionally use Google Sign-In for profile personalization.
The Service retrieves and locally stores basic profile information
(Name, Profile Picture) solely for display purposes. This data is
not transmitted to the Proprietor.
5.3 VOICE RECOGNITION
Voice input functionality relies on the User's browser-native Web
Speech API. Audio data is processed by the browser vendor (e.g.,
Google, Apple) in accordance with their respective privacy policies.
The Service does not record or transmit audio data to the Proprietor.
5.4 WEB HOSTING
The Service is distributed via GitHub Pages. While the Service itself
does not collect data, the hosting provider may automatically record
standard network metadata (IP addresses, browser headers) for delivery
and security purposes.
5.5 NO SALE OF DATA
The Proprietor does not sell, rent, or trade User data to any third
parties. User data is never used for advertising or marketing purposes.
================================================================================
6. USER RIGHTS
================================================================================
Under this Policy and applicable data protection laws, Users retain
the following rights:
6.1 RIGHT OF ACCESS
Users may view all data stored locally through the Service interface.
This includes:
- All chat messages and conversation history
- User preferences and settings
- Theme configuration
6.2 RIGHT TO DELETION
Users may delete all local data at any time:
- Using the "Clear All Chats" function in the Service
- By clearing browser storage/cookies in browser settings
- By deleting individual chats
Once deleted, data cannot be recovered.
6.3 RIGHT TO OPT-OUT
Users may disable optional features at any time:
- Disable Google Sign-In by signing out
- Disable Voice Input by not using the feature
- Disable Web Search in settings
6.4 DATA PORTABILITY
Users may export their chat data where functionality is provided.
Contact the Proprietor for assistance with data export.
6.5 EXERCISE OF RIGHTS
To exercise any of these rights, users can:
- Use the built-in Service controls (Settings > Clear Data)
- Contact the Proprietor at xpro.devs.github.io.com@gmail.com
================================================================================
7. COOKIES AND TRACKING
================================================================================
7.1 COOKIES
The Service does not use cookies for:
- Authentication (sessions are handled via LocalStorage)
- Tracking or analytics
- Advertising or marketing
- Personalization beyond local preferences
7.2 THIRD-PARTY TRACKING
The Service does not include:
- Google Analytics or similar tracking scripts
- Facebook Pixel or social media trackers
- Advertising networks
- Any external scripts that track user behavior
7.3 BROWSER STORAGE
Basic browser storage (LocalStorage, IndexedDB) may be used solely for:
- Essential functionality (session persistence)
- User preference storage (theme, settings)
- Chat message storage
This storage is local to the User's device and is not accessible to
the Proprietor or any third parties.
================================================================================
8. CHILDREN'S PRIVACY
================================================================================
8.1 AGE RESTRICTION
The Service is not intended for use by individuals under the age of 13.
The Proprietor does not knowingly collect personal information from
children under 13.
8.2 PARENTAL CONTROLS
If you are a parent or guardian and believe your child has provided
personal data to the Service without your consent, please contact the
Proprietor immediately to have such data removed.
8.3 MINOR USERS
Users between the ages of 13 and 18 should consult with their parents
or guardians before using the Service and before providing any personal
information.
================================================================================
8.1 CHILD-FRIENDLY SUMMARY
================================================================================
We care about your safety. Because Genesis-AI runs entirely on your device,
we do not see, store, or track your conversations. If you are under 13,
please do not use the Service. If you are between 13 and 18, we recommend
exploring the AI with a parent or guardian. We do not use cookies to track
who you are or what you do.
================================================================================
9. POLICY CHANGES
================================================================================
9.1 RIGHT TO AMEND
The Proprietor reserves the right to modify this Policy at any time.
Material changes will be communicated via the Service.
9.2 NOTIFICATION
When the Policy is updated:
- The "Effective Date" at the top of this document will be changed
- Significant changes may be announced through the Service interface
- Continued use of the Service following any modifications constitutes
acceptance of the updated Policy
9.3 PREVIOUS VERSIONS
Previous versions of this Policy may be available upon request from the
Proprietor.
================================================================================
10. CONTACT INFORMATION
================================================================================
For inquiries regarding this Privacy Policy, data handling practices,
or to exercise your rights, please contact:
DATA CONTROLLER: James Turner (XPDevs)
OFFICIAL EMAIL: xpro.devs.github.io.com@gmail.com
WEBSITE: https://xpdevs.github.io
For Data Protection inquiries, please include "Privacy" in the subject line.
================================================================================
DOCUMENT CONTROL
================================================================================
Document ID: GNS-AI-PRIV-2026-V3
Effective Date: 16 April 2026
Jurisdiction: England & Wales
Classification: Public
Last Updated: 16 April 2026
This document is the official Privacy Policy for Genesis AI.
================================================================================