Privacy Policy

Last updated: March 17, 2026

What We Collect

When you create an account, we collect your email address and name. When you use our services, we collect:

  • Security event metadata — alert types, severity levels, device IDs, and timestamps. We never collect raw network traffic, packet contents, or browsing history.
  • Device inventory — MAC addresses and local IPs of devices on your monitored network, used solely for device identification.
  • Threat indicators — IP addresses, domain names, and file hashes detected by the agent. Only indicators matching known threats are stored.
  • Endpoint security events — process names and PIDs (not process memory), file paths with integrity changes (not file contents), authentication event metadata (success/failure, not passwords), and system security posture (SIP, FileVault, firewall status). Only events classified as HIGH severity or above are forwarded to the cloud.
  • AI queries — your natural language search queries, used to generate SQL and provide results. Queries are not used to train AI models.

What We Don't Collect

  • Raw network traffic or packet captures
  • Browsing history, URLs visited, or web content
  • File contents, documents, or personal files (only file paths for integrity monitoring)
  • Passwords, credentials, or keystrokes
  • Camera, microphone, or screen recordings
  • Process memory, command-line arguments with sensitive data, or environment variables

How We Use Your Data

Your security data is used exclusively to:

  • Display alerts and threat information in your dashboard
  • Power AI threat hunting queries (Gemini 2.5 Flash via Google Vertex AI)
  • Send alert notifications via email (when enabled)
  • Generate weekly security digest reports
  • Contribute anonymized IOC hashes to collective defense (opt-in)

Collective Defense

When a high-severity threat is detected on your network, we share a SHA-256 hash of the indicator (not the raw IP, domain, or hash) with other Chicha customers. This enables collective threat detection without exposing your specific data. You can opt out of collective defense in Settings.

Data Storage

Your data is stored in Google Cloud Platform (BigQuery for events, Firestore for configuration) in the us-central1 region. Data is encrypted at rest and in transit. We retain event data for the duration of your subscription plus 30 days after cancellation.

Third-Party Services

  • Google Vertex AI (Gemini 2.5 Flash) — processes your natural language queries. Google's data usage policy applies.
  • Firebase Authentication — handles login and account management.
  • Stripe — processes payments. We never see or store your credit card number.
  • Resend — sends alert notification and digest emails.

Your Rights

You can request deletion of all your data at any time by contacting us at privacy@chichatechnology.com or through the dashboard Settings page. We will delete your data within 30 days of the request.

Contact

For privacy questions: privacy@chichatechnology.com

Chicha Technology LLC
Alexandria, VA