XRAYTRUTH Platform (Edition for the EU and USA)
This User Protection Program (hereinafter referred to as the "Program") defines the principles, rules, and practices implemented by the "XRAYTRUTH" Platform to ensure privacy, ethical use, and legal protection of Users utilizing services for analyzing voice, video, and text messages, reviewing document metadata, and live communications based on artificial intelligence technologies.
This Program is developed in accordance with the highest standards of digital ethics, information security, and regulatory compliance, including the General Data Protection Regulation (GDPR) of the European Union and U.S. data privacy laws such as the California Consumer Privacy Act (CCPA).
All User data including uploaded or transmitted audio, video, and text content is processed using end-to-end encryption and stored on certified, secure servers located in jurisdictions compliant with GDPR and CCPA requirements.
Audio and video recordings or session data are not retained unless the User has provided explicit consent for their storage for personal use.
Data may be anonymized and aggregated to improve service quality and train AI models, strictly excluding any possibility of identifying individual Users.
The Platform does not sell, share, or trade Users' personal data with third parties without consent, except where required by law.
Artificial Intelligence on the Platform is used solely as a support tool and not as a replacement for human judgment or legal advice.
All participants in analyzed conversations, sessions, or communications must be notified and give informed consent prior to analysis.
The Platform does not support covert surveillance or unauthorized analysis.
All analytical results are provided for informational and advisory purposes only and do not constitute legal conclusions, official findings, court evidence, or statements admissible in governmental bodies.
The Platform's operations are fully compliant with:
Users have the right to:
Access to the Platform's features is protected by two-factor authentication, role-based access controls, and comprehensive activity logging.
All data interactions are recorded in audit logs to ensure transparency and traceability.
The system undergoes regular internal and external security audits, including penetration testing and regulatory compliance assessments.
In the event of a data incident, a user notification procedure is followed in line with GDPR and CCPA requirements.
A designated Data Protection Officer (DPO) is responsible for implementing and overseeing compliance with this Program.
Any misuse of the Platform including unauthorized access, covert monitoring, or improper use of analytics will result in suspension of access and may lead to legal consequences.
All partners and clients are obligated to comply with this Program as part of the Privacy Policy and Data Processing Agreements (DPA).
This Program may be updated in response to:
All changes become effective upon publication on the Platform's official website, with Users being duly notified.
At XRAYTRUTH, we are building a world where truth can be seen clearly technology must serve open, honest, and respectful dialogue. Every User deserves transparency, integrity, and protection.
This Program is not just a policy it is the foundation of trust with every User we serve.