Panoptiqa Independent reporting on surveillance, censorship, and authoritarian control

Privacy Policy

Last updated: June 17, 2026

1. Who we are

Panoptiqa (panoptiqa.com) is an independent news archive that uses AI curation to track real-world surveillance, censorship, authoritarian governance, and corporate control. It is operated by Kader Djehaf. Questions about this policy can be sent to legal@panoptiqa.com.

2. What data we collect

Visitors (no account)

We do not run analytics scripts or advertising trackers. Standard web server logs (IP address, browser, page requested, timestamp) are retained by our hosting provider (Fly.io) for a short period for security and abuse-prevention purposes.

Registered users

If you create an account we store:

  • Email address — used for account authentication and optional newsletters.
  • Display name — shown on your profile (optional).
  • Hashed password — stored using bcrypt; we never store the plaintext.
  • Category preferences — which news categories you follow.
  • Newsletter frequency preference — daily, weekly, or never.
  • Last login timestamp.

Social sign-in (Google, LinkedIn, X/Twitter)

If you sign in via a third-party provider we receive only the information that provider shares with us: typically a unique user ID, email address (if available), and display name. We do not receive your password or any data beyond what the OAuth flow provides. Your use of those providers is governed by their own privacy policies.

3. How we use your data

  • Authenticating you when you sign in.
  • Sending account-related emails (email verification, password reset).
  • Sending newsletters if you have opted in.
  • Personalising the category feed based on your preferences.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

4. Cookies and session storage

We use a single session cookie (access_token) to keep you signed in for up to 30 days. We also store your dark-mode preference in localStorage. We do not use advertising cookies or third-party tracking cookies.

5. Third-party services

  • Anthropic Claude — article content is sent to Anthropic's API for AI curation. No user data is included.
  • Resend — transactional emails are delivered via Resend. Your email address is passed to Resend only when sending you an email.
  • Fly.io — application hosting. Server logs are subject to Fly.io's data retention policies.
  • NewsAPI — used to fetch publicly available news headlines. No user data is shared.

6. Data retention

Account data is retained for as long as your account is active. You may request deletion of your account at any time by emailing legal@panoptiqa.com and your data will be removed within 30 days.

7. Your rights

Depending on your location you may have rights under applicable privacy law (including GDPR and CCPA) to access, correct, port, or erase your personal data. To exercise any of these rights, contact us at legal@panoptiqa.com.

8. Security

Passwords are hashed with bcrypt. All traffic is served over HTTPS. We take reasonable technical measures to protect your data, but no system is completely immune to breach.

9. Changes to this policy

We may update this policy from time to time. Material changes will be noted by updating the "Last updated" date above. Continued use of the service after a change constitutes acceptance.