Privacy Policy

1. Overview

Nux is a Klaviyo analytics bot for Telegram and LINE. This policy explains what data we collect, how we use it, and how you can delete it. Questions? support@thenux.app.

2. What we collect

• Telegram user ID or LINE user ID — to identify you across sessions
• Klaviyo OAuth access token and refresh token — encrypted at rest (AES-256 Fernet) before storage
• Preference settings — default timeframe, conversion metric, alert configuration

3. What we do NOT collect

• No Klaviyo profile data (emails, phone numbers, purchase history) is stored — all Klaviyo data is fetched live, used to format your reply, and discarded immediately
• No message content from your chats is retained
• No advertising identifiers, device fingerprints, or behavioral tracking of any kind

4. Token storage and encryption

Tokens are stored in a SQLite database on a private Railway volume. Before writing to disk, tokens are encrypted with Fernet (AES-256-CBC + HMAC-SHA256). The encryption key is an environment variable that never touches disk. oauth_state rows (used during the authorization flow) expire after 10 minutes.

5. Data retention

Tokens and preferences are deleted immediately and permanently when you run /disconnect (Telegram) or disconnect (LINE). At the same time, Nux calls Klaviyo's token revocation endpoint to invalidate the token server-side. There is no retention period.

6. Third parties

• Klaviyo — tokens are exchanged with a.klaviyo.com. Klaviyo's own privacy policy governs what Klaviyo retains.
• Anthropic — if you use /chat, your query text is sent to the Anthropic Claude API. This feature requires a separate API key configured by the bot operator and is optional.
• Telegram / LINE — message delivery is handled by these platforms. Nux does not control metadata beyond what their bot APIs provide.

7. Security

Tokens are encrypted before storage. The database is on a private volume. No Klaviyo data is exposed through any public endpoint.

8. Changes

The "last updated" date will reflect any changes. Continued use after a change constitutes acceptance.

9. Contact

support@thenux.app