Skip to main content

Privacy Policy

Last updated: April 3, 2026

taqelah! ("we") operates Taqwright at https://www.taqwright.dev. By using our services, you agree to the data practices described below.

Data we collect

Account details

  • Registration credentials (username, email).
  • Passwords, stored using strong, salted, one-way hashing (never in plain text).
  • IP addresses captured during account creation and authentication.

Usage monitoring

  • Device connection and disconnection timing.
  • Device specifications (name, platform, OS version).
  • Session duration metrics.

Authentication records

  • Login attempt outcomes and timestamps, with associated IP addresses.

AI operations

  • Token consumption metrics for automated features.
  • Session-based context memories, automatically removed after 60 days.

Testing materials

  • Page-source snapshots and thumbnail captures, removed after 30 days.
  • Test execution records including status and error details, removed after 90 days.

Financial data

  • Stripe identifiers only. Card details are processed externally by Stripe.

How we use your data

We use data to provide service functionality, verify users, monitor security, administer billing, operate AI features, and improve our products.

Third parties

We may share data with trusted service providers who help us operate our services, such as payment processing, email delivery, security verification, and error monitoring. These providers process data only as needed to perform their services on our behalf.

Cookies

We use two essential cookies only: a session authentication token and Cloudflare verification cookies. We do not use analytics or advertising cookies.

Data retention

  • Accounts: for the active duration of the account.
  • Screenshots: 30 days.
  • AI memory: 60 days.
  • Test records: 90 days.
  • Login logs: retained indefinitely for security purposes.

Your rights

You may access, correct, or delete your account, and export your locally-stored test code.

Security

We protect your data with password hashing (100,000 iterations), 24-hour session expiration, account lockout after 10 failed attempts, location-based OTP verification, and endpoint rate limiting.

Children

Our service is not intended for users under 18.

Contact

Questions about this policy can be sent to contact@taqelah.sg.