Privacy Policy
Last updated: February 2026. This policy applies to users in the European Union (EU/EEA) and other jurisdictions where similar privacy laws apply.
1. Data controller
The service "AI Fortune Teller" (this website) is the data controller for personal data collected through this site. Contact: see section "Contact" below.
2. Data we collect
- Data you provide: Name (or nickname), date of birth, and consultation content (free text) when you request a fortune reading.
- Payment-related data: Payment is processed by third parties (PayPal, Stripe, or cryptocurrency). We do not store your card number or full payment details; we may receive and store order identifiers and payment status for delivering the service.
- Technical data: IP address, browser type, and similar data may be logged by our hosting (e.g. Vercel, Railway) for security and operation. We do not use this for profiling.
- Local storage: We use browser local storage for language preference, cookie consent, and temporarily for payment redirect (e.g. to show your report after payment). No account or persistent profile is created.
3. Purpose and legal basis (GDPR)
We process your data to provide the fortune reading service, process payment, and improve the site. Legal bases:
- Contract: Providing the reading and payment handling (Art. 6(1)(b) GDPR).
- Legitimate interests: Security, fraud prevention, and technical operation (Art. 6(1)(f) GDPR).
- Consent: Where we use optional cookies or analytics, we rely on your consent (Art. 6(1)(a) GDPR). You can withdraw consent at any time via cookie settings or by clearing local storage.
4. Retention
We do not keep a long-term database of your readings. Data sent for a single reading may be processed in memory or in short-lived logs. Payment providers retain data according to their policies. Local storage on your device can be cleared by you at any time. Where we keep logs (e.g. IP) for security, we retain them only as long as necessary (typically no longer than needed for security and debugging).
5. Your rights (EU/EEA and UK)
You have the right to:
- Access (Art. 15): Obtain confirmation and a copy of your personal data.
- Rectification (Art. 16): Have inaccurate data corrected.
- Erasure (Art. 17): Request deletion of your data, subject to legal exceptions.
- Restriction (Art. 18): Request restriction of processing in certain cases.
- Data portability (Art. 20): Receive your data in a structured format where applicable.
- Object (Art. 21): Object to processing based on legitimate interests.
- Withdraw consent: Where we rely on consent, you may withdraw it at any time (e.g. cookie preferences).
- Complain: You may lodge a complaint with a supervisory authority (e.g. in your country of residence).
To exercise these rights, contact us using the details in the Contact section. We will respond within the time required by applicable law (e.g. one month under GDPR).
6. Cookies and local storage
We use:
- Essential: Local storage for language preference and cookie consent choice so the site works as you expect. These are necessary for the service and do not require consent in most jurisdictions, but we still inform you and offer control.
- Optional: If we add analytics or marketing cookies in the future, we will only enable them after you choose "Accept all" in the cookie banner.
You can change your cookie choice by clearing site data or by using the cookie banner again (clear the cookie_consent key in local storage to see the banner again).
7. International transfers
Our frontend and backend may be hosted in regions outside the EU/EEA (e.g. US). When we or our providers process data outside the EEA, we rely on adequacy decisions, standard contractual clauses, or other lawful transfer mechanisms as required by GDPR.
8. Contact
For privacy requests, data subject rights, or questions about this policy, please contact us at contact@biditech.cn. We will respond within the timeframe required by applicable law (e.g. one month under GDPR).