Skip to main content

Privacy notice

Privacy, without the fog.

Comment Cop stores enough data to moderate replies and explain its decisions, then removes sensitive content from old resolved audit records by default.

privacy / current

What is stored

The installation stores account and session data, Threads account credentials, reply text and identifiers, usernames, moderation evidence, review actions, settings, and rule history in PostgreSQL.

What leaves the installation

Meta acts as the connected-account and Threads API processor for authorization, reply delivery, backfill, and hide or unhide actions. OpenAI acts as the moderation processor for eligible reply text and AI-rule evaluation. Each provider processes data under its own terms and retention controls. The web interface currently loads its typefaces from Google Fonts.

Control and retention

By default, resolved reply text, usernames, detailed moderation evidence, AI reasoning, and matched keywords are removed after 90 days. After 365 days, already-redacted allowed and skipped detail is reduced to compact identifiers, decisions, review metadata, timestamps, and analytics facts. Hidden and otherwise actionable rows remain available for unhide or review. Account deletion removes the active database records described on the Data deletion page; encrypted database backups age out under the operator’s backup-retention schedule and are not selectively rewritten. Data retained by OpenAI or Meta follows their separate policies.

Operator and effective date

This notice is effective July 15, 2026. The data controller and installation operator is Brian Sunter, reachable at [email protected]. Material changes to collected data, processors, or retention will be reflected here before deployment.