Privacy Policy
1. Who We Are
FakeDono ("we", "us", "our") is a web-based TTS donation simulator operated by Foeky. The service is accessible at fakedono.wtf. For privacy enquiries, contact us via our support page.
2. What Data We Collect
2.1 Account Data
When you create an account, we collect:
- Email address — used to identify your account and send transactional emails (e.g. password reset, email confirmation)
- Password — stored as a secure bcrypt hash; never stored or transmitted in plain text
- Google OAuth tokens — if you sign in with Google, we receive a token from Google confirming your identity; we do not store your Google password
2.2 Usage Data (Your Settings)
We store your FakeDono preferences in our database, including:
- Saved donor names, amounts, and quick-prompt messages
- Voice, theme, and audio preferences
- Subscription tier (Free or Premium)
- TTS character usage counts
- Onboarding responses (platform preference, etc.)
This data is stored solely to provide and personalise the service for you. It is synced across devices when you are signed in.
2.3 Payment Data
If you subscribe to Premium, payments are processed by Stripe. We store your Stripe customer ID to manage your subscription status. We never see or store your full card number, CVV, or bank details — these are handled exclusively by Stripe under their own Privacy Policy.
2.4 Technical Data
Our infrastructure automatically collects standard server logs, including:
- IP address and approximate geographic location
- Browser type and version
- Pages visited and timestamps
- HTTP request and response data
This data is used for security monitoring, debugging, and abuse prevention. We do not use it for advertising profiling.
2.5 Cookies
We use the following cookies:
- Authentication cookie (Auth) — A session token set when you sign in. Required for the service to function. Expires when you sign out or your session ends.
- Session storage — We store session tokens securely in your browser to keep you signed in between visits.
- Google AdSense cookies — On public-facing pages, Google AdSense may set cookies to deliver and measure advertisements. These are third-party cookies governed by Google's Privacy Policy. You can opt out via Google Ad Settings.
3. How We Use Your Data
We use the information we collect to:
- Create and manage your account
- Deliver the FakeDono TTS service
- Sync your preferences across devices
- Process and manage Premium subscriptions
- Send transactional emails (account confirmation, password reset)
- Detect and prevent fraud, abuse, and security incidents
- Display advertisements on public pages via Google AdSense
- Improve and maintain the service
We do not use your data for unsolicited marketing emails, do not build advertising profiles, and do not sell, trade, or rent your personal data to any third party.
4. Third-Party Services
FakeDono relies on industry-standard third-party services to operate securely, including:
- Cloud Infrastructure & Database Providers (for secure hosting and authentication)
- Stripe (for payment processing) — stripe.com/gb/privacy
- TTS Providers (such as AWS and ElevenLabs for voice synthesis)
- Google AdSense (for advertising) — policies.google.com/privacy
5. Data Retention
We retain your account data for as long as your account is active. If you request account deletion, we will permanently delete your account data within 30 days, except where retention is required by law (e.g. payment records for tax purposes, which are retained for 7 years in accordance with UK HMRC requirements).
6. Your Rights
Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, you have the right to:
- Access — Request a copy of the personal data we hold about you
- Rectification — Request correction of inaccurate or incomplete data
- Erasure — Request deletion of your account and associated data
- Restriction — Request that we restrict how we process your data
- Portability — Request your data in a machine-readable format
- Objection — Object to processing based on legitimate interests
To exercise any of these rights, submit a support ticket. We will respond within 30 days.
7. Security
We implement appropriate technical and organisational security measures to protect your data, including:
- HTTPS / TLS encryption for all data in transit
- Industry-standard password hashing (no plain-text password storage)
- Strict database access controls and row-level security
- Secure, server-side-only API keys that are never exposed to clients
- Cryptographic signature verification for payment events
8. Children's Privacy
FakeDono is not directed at children under the age of 13. We do not knowingly collect personal data from children under 13. If you believe we have inadvertently collected such data, please contact us immediately.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify registered users of material changes by email and will update the "Last updated" date at the top of this page. Continued use of the service after changes constitutes acceptance of the updated policy.
10. Contact
For any privacy-related questions or to exercise your data rights, submit a support ticket.
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe we have handled your data unlawfully.