Stelais

Effective April 9, 2026

Privacy Policy

How Stelais collects, uses, and protects your information.

1. Introduction

Stelais (“we,” “us,” or “our”) operates the Stelais platform at stelais.com (the “Service”). This Privacy Policy explains what information we collect, how we use it, and what choices you have.

By using the Service, you agree to the collection and use of information as described in this policy. If you do not agree, please do not use the Service.

2. Information We Collect

Account information

When you create an account we collect your email address and a password (stored as a salted hash — we never store plaintext passwords). If you sign up through a third-party provider we receive the profile information that provider shares (typically your name and email).

Uploaded content

When you create a proof of origin, you upload a file (image, audio, video, or document). We generate a cryptographic hash (SHA-256 fingerprint) of your file and store it along with metadata such as the file name, file type, file size, and the timestamp of upload. We may also generate perceptual fingerprints (e.g., pHash for images, audio fingerprints for audio) to power similarity scanning.

The original file is stored securely so that you can access it through your Creator Vault. We do not sell, license, or distribute your uploaded content to third parties.

Usage data

We automatically collect standard technical information when you use the Service, including your IP address, browser type, operating system, referring URL, pages visited, and timestamps. This data helps us maintain, secure, and improve the Service.

Payment information

Payments are processed by Stripe. We do not store your full credit card number or bank account details on our servers. Stripe's privacy practices are governed by Stripe's Privacy Policy.

3. How We Use Your Information

  • Provide the Service — create and store proofs of origin, run similarity scans, and generate DMCA notices on your behalf.
  • Authenticate you — verify your identity when you sign in and manage your account.
  • Process payments — manage subscriptions, enforce tier limits, and issue receipts.
  • Communicate with you — send transactional emails (e.g., password resets, proof confirmations) and, if you opt in, product updates.
  • Improve and secure the Service — analyze usage patterns, diagnose technical issues, and prevent abuse.

4. Blockchain and Permanent Records

When you create a proof of origin, the cryptographic hash of your file and associated metadata may be anchored to the Arweave blockchain to provide permanent, tamper-proof verification. Data written to a blockchain is immutable — it cannot be edited or deleted. We only write the hash and metadata to the chain, never the original file itself.

5. Data Sharing

We do not sell your personal information. We share data only in these circumstances:

  • Service providers — trusted third parties that help us operate the Service (e.g., Stripe for payments, cloud hosting providers for storage). They access only the data necessary to perform their function and are contractually bound to protect it.
  • Legal compliance — if required by law, subpoena, or court order, or to protect the rights, property, or safety of Stelais, our users, or the public.
  • Business transfers — in connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your data becomes subject to a different privacy policy.

6. Data Retention

We retain your account information and uploaded content for as long as your account is active. If you delete your account, we will remove your personal information and uploaded files from our servers within 30 days, except where retention is required by law or necessary for legitimate business purposes (e.g., fraud prevention). Cryptographic hashes anchored to a blockchain cannot be deleted due to the immutable nature of blockchain technology.

7. Security

We use industry-standard security measures to protect your data, including encryption in transit (TLS), encrypted storage, and access controls. While no system is perfectly secure, we take reasonable steps to guard against unauthorized access, alteration, or destruction of your information.

8. Cookies

We use essential cookies to keep you signed in and maintain your session. We may use analytics cookies to understand how the Service is used. You can disable cookies in your browser settings, but some features of the Service may not function properly without them.

9. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, or delete your personal information, object to certain processing, or request data portability. To exercise any of these rights, contact us at privacy@stelais.com.

If you are a resident of the European Economic Area (EEA), United Kingdom, or California, additional rights may apply under GDPR, UK GDPR, or the CCPA respectively. We will respond to verified requests within the timeframes required by applicable law.

10. Children's Privacy

The Service is not directed to anyone under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected such information, we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Effective” date at the top of this page and, for material changes, notify you by email or through the Service. Your continued use of the Service after the changes take effect constitutes acceptance of the updated policy.

12. Contact

If you have questions about this Privacy Policy, please contact us at privacy@stelais.com.