Privacy Policy

Who We Are

Diaris is an AI tools discovery platform available at diaris.net. It is built and operated by one individual. For any privacy related questions contact us at hello@diaris.net.

By using Diaris you agree to this Privacy Policy. If you do not agree, please do not use the platform.

What Data We Collect

When you create an account

We collect your email address and a hashed password. If you sign in with Google, we receive your name, email address, and profile picture from Google. We do not receive or store your Google password.

When you use the platform

We collect your saved tools, folder names and contents, search queries, pages visited, time spent on pages, and general usage patterns. This helps us improve the platform and personalise your experience.

Device and session data

We automatically collect your browser type, device type, country, session duration, and interactions with pages. This is used for analytics and detecting technical problems. We do not collect your precise location or IP address for tracking purposes.

Contact and support messages

If you contact us through the contact form or help section, we store your name, email, and message content so we can respond to you.

Newsletter and waitlist

If you sign up for our newsletter or Pro waitlist, we store your email address. You can unsubscribe at any time by emailing hello@diaris.net.

How We Use Your Data

We use your data only for the following purposes:

• To create and manage your account
• To save your folders and tool collections
• To personalise your tool recommendations
• To send password reset and verification emails
• To respond to your support messages
• To detect and fix technical problems
• To understand how people use Diaris so we can improve it
• To notify you about Pro launch if you joined the waitlist

We do not use your data for advertising. We do not sell your data to any third party.

Google OAuth

When you choose to sign in with Google, we use Google OAuth 2.0. Google shares your name, email address, and profile picture with us. We store this in our database to create and manage your account.

We do not access your Google Drive, Gmail, contacts, or any other Google service. We only request the minimum permissions needed to identify you and create your account.

You can revoke Diaris access to your Google account at any time by visiting your Google Account security settings at myaccount.google.com/permissions.

Cookies

Diaris uses cookies and local storage to keep you logged in, remember your preferences, and maintain your session. We do not use third party advertising cookies.

The cookies we set are necessary for the platform to function. You can clear them at any time through your browser settings. For full details see our Cookie Policy.

Third Party Services

Diaris uses the following third party services to operate. Each has its own privacy policy.

Supabase

Our database and authentication provider. All user data — accounts, folders, saved tools, messages — is stored on Supabase servers. Supabase is SOC 2 compliant. Data is stored on servers in the United States. See supabase.com/privacy.

Anthropic

We use Anthropic's Claude AI to power certain features on the platform. Queries sent to Claude are processed by Anthropic's servers. We do not send personally identifiable information to Anthropic. See anthropic.com/privacy.

Resend

We use Resend to send transactional emails — password resets, verification emails, and contact form replies. Your email address is processed by Resend when we send you an email. See resend.com/privacy.

Microlink

We use Microlink to generate screenshots and previews of AI tools listed on Diaris. Microlink processes publicly available URLs only. No personal data is sent to Microlink. See microlink.io/privacy.

Vercel

Diaris is hosted on Vercel. Vercel processes web traffic to serve the platform. Vercel may log IP addresses and request data as part of standard hosting operations. See vercel.com/legal/privacy-policy.

Google Fonts

We load fonts from Google Fonts. Google may log your IP address when fonts are requested. This is standard practice for font delivery.

Data Storage and Retention

Your data is stored on Supabase servers located in the United States. Data is encrypted at rest and in transit.

We retain your account data for as long as your account is active. If you delete your account, we delete your personal data within 30 days. Some anonymised usage data may be retained for analytics purposes after deletion.

Contact form messages are retained for up to 12 months. Newsletter and waitlist emails are retained until you unsubscribe.

Your Rights — GDPR (European Users)

If you are located in the European Union or European Economic Area, you have the following rights under the General Data Protection Regulation:

• Right to access — you can request a copy of all data we hold about you
• Right to rectification — you can ask us to correct inaccurate data
• Right to erasure — you can ask us to delete your data
• Right to restrict processing — you can ask us to limit how we use your data
• Right to data portability — you can ask for your data in a portable format
• Right to object — you can object to how we process your data
• Right to withdraw consent — where processing is based on consent, you can withdraw it at any time

To exercise any of these rights, email us at hello@diaris.net. We will respond within 30 days.

Your Rights — India DPDP Act 2023

If you are located in India, you have the following rights under the Digital Personal Data Protection Act 2023:

• Right to access information — you can ask what personal data we hold and how it is used
• Right to correction — you can ask us to correct inaccurate or incomplete data
• Right to erasure — you can ask us to delete your personal data when it is no longer needed
• Right to grievance redressal — you can raise a complaint with us directly
• Right to nominate — you can nominate another person to exercise your rights in case of death or incapacity

To exercise any of these rights, email hello@diaris.net. We will respond within 30 days. If your grievance is not resolved, you may escalate to the Data Protection Board of India once it is operational.

Your Rights — California Users (CCPA)

If you are a California resident, you have rights under the California Consumer Privacy Act:

• Right to know what personal data we collect and how it is used
• Right to delete your personal data
• Right to opt out of the sale of personal data — note: we do not sell personal data
• Right to non-discrimination for exercising your privacy rights

To exercise these rights, contact us at hello@diaris.net.

Children

Diaris is not intended for children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us at hello@diaris.net and we will delete it immediately.

International Data Transfers

Diaris is operated from India and served globally. Your data is stored on servers in the United States via Supabase and Vercel. By using Diaris, you consent to your data being transferred to and processed in the United States.

We take reasonable steps to ensure your data is handled securely regardless of where it is processed.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the date at the top of this page. Continued use of Diaris after changes are posted means you accept the updated policy.

For significant changes, we will notify registered users by email.

Contact

For any privacy questions, data requests, or concerns, contact us at:

We aim to respond to all privacy requests within 30 days.