Privacy Policy

Safua is a product of DarkoLab AI Inc., a company based in Vancouver, British Columbia, Canada. In this document, "we", "us", and "Safua" refer to DarkoLab AI Inc.

You can reach us about privacy at hello@darkolab.com.

What we collect depends on how you use Safua. Today the website collects very little. The capabilities below marked "future" describe data the desktop instructor will handle once it is live, and are included here for transparency.

• Account information: if you create an account, basic details such as your name and email address.
• Early-access email: the email address you provide to join early access, plus an optional name.
• Future, screen-observation derived events: when you opt in, structured events derived from observing your work, such as actions taken and steps completed. See the consent model below.
• Future, credential evidence: the scored evidence used to issue a credential, recorded only with your explicit consent.
• Basic technical data: standard server and device information needed to operate and secure the site.

Observation is opt-in and never silent. You choose, per application or window, whether Safua may observe your work, and you can stop observation at any time with a single action.

Raw screen frames are not stored by default. Observation produces derived events used for learning and for proof. Credential evidence is recorded only when you give explicit consent.

You can see what Safua sees. We design the observation experience so there is always a clear, visible indicator while it is active.

• Opt-in per application or window, not a blanket capture.
• A visible indicator whenever observation is active.
• One action to stop observation.
• Raw screen frames not stored by default; derived events used for learning and proof.
• Credential evidence recorded only by explicit consent.

We use the data we collect to operate the site, run early access, and, once live, to power the instructor and issue proof. We do not sell your personal information.

• Operate, maintain, and secure the website and, once live, the desktop instructor.
• Contact early-access members about preview availability.
• Future: deliver instruction and produce scored proof from your consented work.

We intend to keep personal data only as long as needed for the purpose it was collected, and to give you control over your data.

Subject to applicable law, you will be able to request access to, correction of, or deletion of your personal data, and to withdraw consent for observation at any time.

• Request a copy of the personal data we hold about you.
• Request correction or deletion of your personal data.
• Withdraw consent for observation and for credential evidence.

We intend to protect personal data with industry-standard safeguards, including encryption in transit and at rest, and access controls that limit who can reach your data.

No system is perfectly secure. The specific technical and organizational measures will be detailed here after review.

We will rely on a limited set of service providers to operate Safua, such as hosting, email delivery, and analytics. Each will be bound to handle data only on our instructions.

A current list of processors and the data each handles will be published here.

• TODO: enumerate processors (hosting, email delivery, analytics, payments).
• TODO: state what data each processor handles and where it is located.

As a Canadian company, our privacy practices are built around the Personal Information Protection and Electronic Documents Act (PIPEDA).

We intend to be ready for the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) as we serve users in those regions. The specifics, including lawful bases and cross-border transfer mechanisms, will be confirmed after review.

Safua is not directed to children. We do not knowingly collect personal data from children. Age thresholds and handling will be confirmed after review.

We may update this policy as the product and our practices evolve. When we make material changes, we will update the effective date and, where appropriate, notify you.

Questions about privacy or this policy can be sent to hello@darkolab.com. DarkoLab AI Inc., Vancouver, British Columbia, Canada.