← Back

Privacy Policy

Last updated: 3 May 2026

This Privacy Policy explains how ContextDrop ("we", "us", "our") collects, uses, and protects your personal information when you use our Telegram bot, website, and dashboard at contextdrop.ai (the "Service").

ContextDrop is operated by Kaan Taskent, an individual based in the United Kingdom (the "Operator"). For the purposes of UK GDPR, the Operator is the data controller responsible for your personal information.

Questions? Contact us at taskentbusiness@gmail.com.

1. Who can use ContextDrop

You must be at least 16 years old to use ContextDrop. By using the Service, you confirm that you meet this age requirement. If we learn that we have collected personal information from someone under 16, we will delete it.

2. What information we collect

Information you give us directly:

  • Email address and name (when you sign in with Google)
  • Telegram username and Telegram user ID (when you message the bot)
  • Notion workspace details (if you choose to connect Notion)
  • Any messages, links, or content you send to the bot or dashboard

Information generated by your use of the Service:

  • Video links you submit for analysis (from Instagram, TikTok, YouTube, X, and other platforms)
  • AI-generated verdicts, classifications, and analyses we produce from those links
  • Chat history with the bot and dashboard
  • Saved tasks, preferences, and settings
  • Credit balance and usage records

Technical information:

  • IP address and approximate location (city or region level)
  • Browser type, device type, and operating system
  • Login timestamps and session activity
  • Cookies required for authentication (see Section 7)

We do not collect special category data such as health information, racial or ethnic origin, political opinions, or biometric data.

3. How we use your information

PurposeLegal basis (UK GDPR)
To provide the Service (analyse your links, return verdicts, sync to your dashboard)Performance of contract
To authenticate you via Google sign-inPerformance of contract
To send you transactional notifications via Telegram (analysis results, errors)Performance of contract
To improve the Service, fix bugs, and develop new featuresLegitimate interest
To detect, prevent, and respond to abuse, fraud, or security incidentsLegitimate interest
To comply with our legal obligationsLegal obligation
To send marketing communications (only with your consent)Consent

We do not sell your personal information. We do not share your personal information with advertisers.

4. AI processing and your data

ContextDrop uses third-party AI providers (currently OpenAI and Anthropic) to analyse the video content you submit and generate verdicts.

What we send to AI providers:

  • The transcript of the video you submitted
  • Visual descriptions of frames from the video
  • The metadata associated with the video (caption, hashtags, creator)
  • Any context you provided about why you saved the video

What we do not send:

  • Your email address, name, or Telegram username
  • Your Google or Notion account details
  • Other users' content

AI training: We do not currently train AI models on your data. If we change this practice, we will update this Privacy Policy and notify users in advance. Our AI providers (OpenAI, Anthropic) have their own data handling policies, which prohibit training on API inputs by default.

5. Who we share your information with

Third partyWhat they doWhere
SupabaseDatabase and authentication hostingUS, EU
VercelWeb dashboard hostingUS, global edge
RailwayTelegram bot hostingUnited States
OpenAIAI content analysis and verdict generationUnited States
AnthropicAI content analysis and verdict generationUnited States
ApifyVideo metadata and content scrapingUS, EU
GoogleAuthentication (Sign in with Google)US, global
NotionOptional task export integrationUnited States
Stripe (when payments launch)Payment processingUS, EU

We may also share your information when required by law, to protect the rights or safety of ContextDrop or its users, or in connection with a business transfer (in which case you will be notified).

6. International data transfers

Most of our service providers are based in the United States. When we transfer your personal information outside the UK or EEA, we rely on the UK's adequacy decisions, standard contractual clauses (SCCs) approved by the UK ICO, or the UK Extension to the EU-US Data Privacy Framework where applicable.

You can request a copy of the safeguards we use by emailing taskentbusiness@gmail.com.

7. Cookies

We use cookies for one purpose: keeping you signed in. Specifically:

  • A session cookie set by Supabase Auth when you sign in with Google
  • A short-lived cookie used during the OAuth login flow

We do not use marketing cookies, advertising trackers, or analytics cookies that identify individual users.

8. How long we keep your data

DataRetention period
Account information (email, name, Telegram ID)Until you delete your account
Saved analyses and chat historyUntil you delete them or delete your account
Authentication logs90 days
Backup copies30 days after deletion from the live database
Records required for tax or legal reasonsUp to 7 years after account closure

9. Your rights under UK GDPR

You have the following rights regarding your personal information:

  • Right of access — request a copy of the personal information we hold about you
  • Right to rectification — ask us to correct inaccurate or incomplete information
  • Right to erasure — ask us to delete your personal information
  • Right to restriction — ask us to limit how we use your information
  • Right to data portability — request your information in a machine-readable format
  • Right to object — object to processing based on legitimate interests
  • Right to withdraw consent — withdraw any consent you previously gave
  • Right to complain — lodge a complaint with the UK ICO at ico.org.uk

To exercise any of these rights, email taskentbusiness@gmail.com. We will respond within one calendar month.

10. Security

We use technical and organisational measures to protect your information, including encrypted connections (HTTPS), encrypted storage at the database level, access controls, and regular security review of third-party providers.

No system is perfectly secure. If we become aware of a personal data breach that affects your rights, we will notify you and the ICO as required by UK GDPR.

11. Children's privacy

ContextDrop is not intended for users under 16. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, contact us and we will delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date and notify you via email or in-app notification before the changes take effect. Continued use of the Service after changes take effect constitutes acceptance of the updated policy.

13. Contact

Email: taskentbusiness@gmail.com

Operator: Kaan Taskent (operating as ContextDrop)

Country: United Kingdom