Back to Dashboard

Policies

This page combines the Privacy Policy and the Terms of Service into one cohesive page.

Notice: For clarity "we" and "us" and "CVX" refers to CharlieVX platform operator(s), and "you", "your" or "user" refers to the individual using the platform and its services.

Privacy Policy

This Privacy Policy explains what information the CVX platform collects, how it is used, and the choices you have about your data.
We keep only the information needed to provide and improve the service.
The less retained, the happier Charlie is.

1. Information Collected

The platform collects only the data needed to operate services, if you need clarity at any stage please do reach out!

1a. Day-to-day

Account information:

    • Discord ID (if linked)
    • Username (if set)
    • Encrypted Password (if set)
    • Basic activity logs
    • Security related logs

1b. Web-apps and general applications

CVX runs a variety of web apps and services. These may collect the following information:

  • Files you upload (for example: images you upload, overlays)
  • Interaction timestamps (when you use features or send messages)
  • Speech activity indicators (if voice features are used)
  • Session times (login and logout timestamps)
  • Device details (browser and operating system)
  • Network information (IP address - may be anonymized or hashed)
  • Technical processing data (file encodings, temporary caches)
  • Authentication events (logins, multi-factor authentication status, token use)
  • Security and access logs (failed logins, suspicious activity)
  • Error and performance logs (anonymized usage data)
  • Retention and access records (how long data is kept and who accessed it)
  • Moderation records (flags, reports, actions taken)
  • Activity shown in your dashboard (recent uploads, logins, overlay changes)

These logs are mostly visible in your `dashboard` on demand under "recent activity" apart from those retained for security purposes.

2. Uploaded Files

Uploaded files (for example, images you upload for use in the web apps) are stored in a folder unique to your account.
These files are used only for displaying your content within the platform and during app use within the defined parameters of the web-app.

3. Cookies & Tracking

Only essential session cookies are used. This means:

  • No analytics cookies
  • No advertising trackers
  • No third-party tracking pixels
  • Only cookies needed for login sessions and basic functionality

Cookies can be removed by clearing your browser data. Note that removing cookies may log you out and affect some functionality.

4. Security Measures

We protect the service and user data with standard security measures, including:

  • Credentials stored securely (encrypted)
  • Checks to prevent malicious input
  • Separate storage for each account
  • Rate limits and intrusion detection systems
  • Security monitoring and firewalls
  • Regular security audits and log rotation
  • Servers and databases encrypted at rest

5. Bunny CDN & WAF

This service uses Bunny.net (Bunny) to deliver content faster and help protect the web apps. Bunny may process:

  • IP addresses
  • Request details (timing, headers)
  • Firewall or rate-limit events

Bunny.net’s data retention follows their policies. Users may review Bunny.net’s privacy policy here:

https://bunny.net/privacy/

7. Security Monitoring

We run a security monitoring system 24/7. It collects logs such as:

  • Web request details
  • Firewall and intrusion alerts
  • Successful and failed authentication events
  • System security warnings

Security logs are kept for 7 days unless:

  • There is evidence of malicious activity
  • Longer retention is needed for legal or operational reasons
  • There is an ongoing investigation

In those cases logs may be kept for at least 12 months.


Security logs are used only for security and troubleshooting. They are not sold or used for advertising or profiling. We monitor these systems continuously.

8. How Your Data Is Used

  • Account authentication and session management
  • Providing and storing features you've enabled
  • Real-time features you use in the apps
  • Security and fraud prevention
  • Finding and fixing performance or stability issues

9. Data Retention

Data is kept only while your account is active unless otherwise required by law. You may delete your data at any time using the /erase_data feature, which permanently removes:

  • Your account
  • Your uploaded images
  • Any overlay-related data
  • All logs referencing your account
  • Any data related to your users where possible

10. GDPR and Your Rights

If you are located in the EU/EEA, you have the right to:

  • Access your personal data
  • Correct any inaccurate information
  • Request deletion of your data (Right to Erasure)
  • Request a copy of your data (Right to Portability)
  • Ask us to limit or stop certain kinds of processing

You can access your personal data, correct inaccuracies, and make requests through your dashboard or by contacting us. Only details on the platform are held, no third-party data is shared.

If you are outside the EU/EEA we still provide data erasure with a one-click solution.
You can click the big-red data delete button at any time in the dashboard.
Requests can be made through your dashboard or via email.

11. Contact

For privacy-related questions or GDPR requests, contact us by email at charlesbaron@tutanota.com. Please do not use Discord for privacy or security reports.

Terms of Service

These Terms govern the use of the CharlieVX Platform including but not limited to the Dashboard, web apps, private access services, and related CVX tools ("the Service(s)"). By accessing or using the Service, you agree to these Terms.

1. Acceptance of Terms

By creating an account or using any part of the Service, you agree to comply with these Terms.
If you do not agree, you must stop using the Service immediately!

You can close your account at any point by visiting the Dashboard and clicking "Erase My Data"!
Clicking this will irreversibly delete all data held in relation to you and your account with us where possible to do so.

2. Eligibility

You must be at least 16 years old to use the Service. If your region requires a higher minimum age, you must meet that requirement.

3. User Accounts

You are responsible for maintaining the confidentiality of your login credentials and for all activity under your account.
If you believe your account has been accessed without permission, notify us promptly by email at charlesbaron@tutanota.com. Please do not open a Discord ticket for security reports.

4. User Content & Uploads

Files are stored in separate folders for each account. This is done for privacy, security, and GDPR compliance.

Any files uploaded are done so with the agreement you have legal right to redistribute these files.

Any files uploaded are done so with understanding they have not been generated in-part or full from any generation, form or functional model of AI (Artificial Intelligence).

You retain ownership of any images or files you upload (for example, uploaded images). By uploading them, you grant CVX permission to store and process them as needed to operate features you enable, such as overlays or dashboard previews.

5. Prohibited Use

You agree not to use the Service to:

  • Engage in illegal activity
  • Upload harmful, malicious, or exploitative content
  • Attempt unauthorized access to systems or data
  • Interfere with service integrity or availability
  • Abuse or attempt to bypass security monitoring or rate limits
  • Misuse any part of the platform(s) for unlawful purposes

Violations may result in suspension, access removal, or logs being retained longer for security/legal reasons.

Cyber security and research specialists see the Safe Harbour disclaimer at the end.

6. Service Availability

The Service may experience downtime for maintenance, updates, or issues outside our control (network outages, Bunny events, hosting failures, etc.). We do not guarantee a specific uptime.
We will try to provide fair notice when possible.

7. Security Measures

Security measures are described in the Privacy Policy (see "Security Measures"). In short, we store credentials securely, run monitoring, use firewalls and rate limits, and perform regular security checks.

8. Data Removal & Erasure

For details on data deletion and retention see the Privacy Policy (see "Data Retention"). You can delete your account and associated data using the /erase_data feature; this will remove most personal data related to your account.

Security logs may be retained longer if legally or operationally required.

9. Modifications to the Service

Features may be added, removed, or modified at any time. Continued use of the Service after changes are made constitutes acceptance of those changes. Changes will be published as 'announcements' in the Dashboard, or advertised on social platforms such as Discord.

10. Disclaimer & Limitation of Liability

The Service is provided “as-is” with no warranty of any kind. The administrator(s) are not liable for:

  • Data loss
  • Service downtime
  • Misuse of the Service by users
  • File corruption due to user uploads
  • Third-party failures (e.g., Bunny outages)

Use of the service is entirely at your own risk as even mitigations to these risks can fail anywhere, at any time.

11. Reverse Engineering and Competitive Use

By accessing or using the Service, you agree that you will not:

  • Reverse engineer, decompile, disassemble, or otherwise attempt to extract source code or underlying mechanisms
  • Copy, clone, replicate, or recreate any part of the Service, its UI, or functionality considered unique
  • Scrape, harvest, or extract data, metadata, or platform structure for competitive purposes
  • Use the Service while developing, operating, or contributing to a directly competing platform
  • Utilize the Service for benchmarking, model training, or performance comparison against competing offerings
  • Use any part of this platform for training any generation, form or functional model of AI (Artificial Intelligence)
  • Attempt to reach out to clients, customers or users of the platform for competitive purposes

Safe Harbour Disclaimer
Limited security testing conducted in good faith under a one-to-one written agreement known as a Safe Harbour Agreement (reach out for details) is permitted and exempt from some of these restrictions.
Any activity performed outside that scope is strictly prohibited.

Violation of this section may result in immediate account termination, permanent ban on all associated platforms, IP blocking, revocation of access, and potential legal action where applicable.

12. Contact

For privacy or GDPR requests, see the Privacy Policy contact section and contact us by email as described there; please do not use Discord for privacy or security reports.