Welcome to simulation.chat. We are committed to protecting your privacy and ensuring you understand how your data is handled. This Privacy Policy explains our practices regarding the collection, use, and protection of your information.
Hardware-Secured Encryption
simulation.chat is built with end-to-end encryption and a zero-trust architecture. Your chat conversations and AI-generated simulations are encrypted on your device before being transmitted to our servers. Decryption occurs only within AWS Nitro Enclaves—a Trusted Execution Environment (TEE) that creates an isolated, tamper-proof processing space. Even our own engineers cannot access data inside a running enclave: there is no SSH access, no way to inspect memory, and no ability to extract encryption keys. This hardware-level isolation ensures your conversations remain protected.
1. Information We Collect
1.1 Account Information
When you create an account, we collect:
- Authentication data: Email address and name provided by your authentication provider (e.g., Google, Facebook)
- Account identifiers: Unique user IDs for account management
1.2 Encrypted User Content
When you use our service, the following data is stored in encrypted form:
- Chat exports: Conversation data you upload from messaging platforms
- AI simulations: Generated conversation continuations and scenarios
- Characters and metadata: Information about conversation participants
1.3 Technical Information
We automatically collect:
- Device information: Browser type, operating system, device identifiers
- Usage data: Feature usage patterns, session duration, error logs
- Network information: IP address, approximate location (country/region)
2. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve our services
- Authenticate your identity and manage your account
- Process your encrypted data for AI generation within isolated secure hardware environments
- Send service-related communications
- Detect and prevent fraud, abuse, and security incidents
- Comply with legal obligations
3. Data Encryption and Security
How Your Data Is Protected
Your conversation data is encrypted using AES-256-GCM encryption with keys derived from your recovery phrase. Here's what this means:
- Encryption happens in your browser before data leaves your device
- Our servers store only encrypted data
- AI processing occurs exclusively within AWS Nitro Enclaves (Trusted Execution Environments)—specialized hardware that creates a cryptographically isolated processing space, completely separate from our servers and infrastructure
- The enclave architecture prevents any external access during operation—including from our own team—with no shell access, no debugging interfaces, and no memory inspection capabilities
- Data is temporarily decrypted only inside the enclave for AI generation, then immediately re-encrypted before leaving
- Even in the event of a server breach, your conversations remain encrypted and protected
3.1 Your Recovery Phrase
Important: When you create an account, you receive a recovery phrase (mnemonic). This phrase allows you to recover your encryption keys if you lose access to your devices.
To improve ease of use during onboarding, your encryption key is temporarily backed up on our servers—within the same hardware-isolated environment that processes your data—until you authenticate a second device. This backup is automatically deleted once two devices are linked. You can also manually disable or re-enable this backup at any time in your account settings.
Once the backup is removed, your recovery phrase becomes the only way to recover your encryption keys. We do not store your recovery phrase—if you lose it after the backup is disabled, your encrypted data cannot be recovered. You are solely responsible for keeping your recovery phrase secure.
4. Third-Party Services
We use the following third-party services:
4.1 Authentication Provider
We use Clerk for user authentication. When you sign in with Google, Facebook, or other providers, Clerk processes your authentication data according to their privacy policy.
4.2 AI Processing
We use AI language models to generate conversation simulations. Your data is:
- Decrypted only within AWS Nitro Enclaves (TEE)—hardware-isolated environments inaccessible to operators
- Protected by strict governance policies limiting any operational access
- Not used to train or improve AI models
- Not retained beyond the immediate processing request
- Re-encrypted before being returned to storage
4.3 Infrastructure
Our services are hosted on Amazon Web Services (AWS) with data centers in the EU. We use industry-standard security practices including encryption at rest and in transit.
5. Data Retention
We retain your data as follows:
- Account data: Retained until you delete your account
- Encrypted content: Retained until you delete it or delete your account
- Technical logs: Retained for up to 90 days for security and debugging purposes
When you delete your account, all associated data is permanently deleted from our systems within 30 days.
6. Your Rights and Choices
You have the following rights regarding your data:
- Access: View and download your data through your account settings
- Deletion: Delete individual conversations or your entire account
- Portability: Export your data in a machine-readable format
- Correction: Update your account information at any time
- Restriction: Request limitation of processing in certain circumstances
To exercise these rights, contact us at contact@simulation.chat.
7. Cookies and Tracking
We use essential cookies to:
- Maintain your login session
- Remember your preferences
- Ensure security of your account
We do not use third-party advertising cookies or cross-site tracking.
8. Children's Privacy
simulation.chat is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately at contact@simulation.chat.
9. International Data Transfers
Your data may be processed in countries outside your country of residence, including the United States and European Union. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses where required.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on our website or sending you an email. Your continued use of the service after changes take effect constitutes acceptance of the updated policy.
11. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
- Email: contact@simulation.chat