Legal

Privacy Policy

Last Updated: May 2026

1. Introduction

Telegrapy ("we", "us", "our") operates the telegrapy.me website and the Telegrapy SaaS platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

Account Information: When you register, we collect your email address, name, and authentication credentials managed through Supabase Auth.

Usage Data: We automatically collect information about how you interact with the Service, including API calls made, scraping jobs executed, pages visited, and timestamps.

Telegram Data: When you connect Telegram accounts to the platform, we store encrypted session data necessary to operate the scraping service on your behalf. We do not access or store your personal Telegram messages.

Payment Information: Payment processing is handled by third-party providers. We do not store credit card numbers or full payment details on our servers.

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve the Service
  • Process your scraping jobs and deliver results
  • Send transactional emails (job completions, alerts, billing)
  • Monitor system health and prevent abuse
  • Enforce our Terms of Service and rate limits

4. Data Storage & Security

All Telegram session data is encrypted at rest using AES-256 (Fernet) encryption. API keys are stored as irreversible hashes. Data is hosted on infrastructure within the European Union. We implement industry-standard security measures including TLS encryption in transit, network isolation, and regular security audits.

5. Data Retention

Scraped data is retained according to your plan tier. Free-tier data is automatically purged after 30 days of inactivity. You may request deletion of all your data at any time through the dashboard or by contacting support.

6. Third-Party Services

We use the following third-party services:

  • Supabase — Authentication and database
  • Stripe — Payment processing
  • Netlify — Web hosting
  • Microsoft Clarity — Product analytics, heatmaps, and session recordings
  • Prometheus/Grafana — System monitoring (no PII)

7. Your Rights

Under GDPR and applicable data protection laws, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Request erasure of your data
  • Export your data in a portable format
  • Object to or restrict processing
  • Withdraw consent at any time

8. Cookies

We use essential cookies for authentication and session management. When Microsoft Clarity is enabled, it may use first-party and third-party cookies or pseudonymous identifiers to help us understand page interactions, heatmaps, and session recordings. Clarity masks sensitive content by default, and users in regions that require consent may receive limited Clarity functionality unless consent is provided.

9. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a prominent notice on the Service at least 14 days before changes take effect.

11. Contact Us

If you have questions about this Privacy Policy, please reach out at support@telegrapy.me or through our contact page.