Privacy Policy
Last updated: January 2026
Overview
ChainOfFact is an append-only evidence system. This policy describes how we handle data submitted to the system and information collected through our website.
Data We Collect
- Event data submitted via API (stored immutably as evidence)
- Cryptographic hashes of submitted events
- Timestamps of event submissions
- Standard web server logs (IP addresses, user agents)
Data Retention
Event data submitted to ChainOfFact is retained permanently by design. The append-only nature of the system means data cannot be modified or deleted after submission. This is a core architectural requirement, not a policy choice.
Data Security
All data is cryptographically hashed at ingestion. Chain integrity is maintained through hash linking. Evidence bundles can be verified offline without requiring access to ChainOfFact systems.
Third Parties
ChainOfFact does not sell, rent, or share event data with third parties. Evidence may be exported by authorized users for legal, regulatory, or audit purposes.
Contact
For privacy-related inquiries, contact hello@chainoffact.com
Direct Answer
ChainOfFact's privacy policy describes what data is collected from users and subscribers, how it is processed and retained, and the rights available under applicable privacy laws.
Data Collection
ChainOfFact collects account information (email address), billing information (processed by Stripe), API usage counts, and the content of witness artifacts submitted via the API.
Submitted Evidence Data
Witness artifacts submitted via the API are stored as append-only records. ChainOfFact does not delete submitted artifacts as deletion would violate the append-only guarantee of the ledger.