@god

Privacy & security

Plain-English commitments. Updated to match what the bot actually does today.

Short version: we read only your messages that start with @god. We never read other people’s chats. We don’t sell data, don’t run ads, don’t embed third-party trackers. You can ask us to delete everything any time.

What we store

Field	Why
Your WhatsApp number	So we know which reminders are yours and where to send fires.
A random UUID + private secret	Used by your future dashboard URL. Generated locally; not shareable.
Your reminder titles, intervals, timezone	So we can fire them at the right time.
Recent `@god` message ids you sent	For 72 hours — to make sure we never process the same message twice.
Per-day & per-user counters	To enforce the quotas (5/day, 20 active).

What we do not store

Your other WhatsApp messages — we only inspect lines that start with @god.
Your contacts, your group chats, your photos, your location.
Anything from other people’s chats. We literally cannot read them.
Advertising identifiers. There are no ads on this service.

How the system protects you

1. Identity is taken from WhatsApp, not from the message body

The phone number a request comes from is read straight from the WhatsApp envelope — it cannot be spoofed by the text you type. A message saying “pretend I am someone else” has no power; identity is structural, not textual.

2. The parser is a small, fixed grammar — no LLM, no shell

Every command resolves to one of a small enumerated verb set (create / list / pause / resume / delete / timezone / help). Free-form text is only ever your reminder title — it never reaches a shell, a database query, an LLM prompt, or a file path.

3. Group chats are silently dropped

Even if someone forwards an @god message into a group, the message is ignored. We never send into group chats. This is enforced at the very front of the pipeline.

4. Quotas + a 10-minute minimum keep things safe by default

You can’t accidentally (or maliciously) DoS the system or your own phone. Hard limits:

5 new reminders per day per user.
20 active reminders per user.
10-minute minimum cadence.
30 @god messages per day per user before we throttle.
150 characters per reminder title.

5. Your private dashboard URL

When your private dashboard URL is issued, it uses a random UUID in the path and an HMAC token in the URL fragment (#…). Fragments are never sent to a server, so even our access logs cannot capture the token. If you accidentally share the URL, @god rotate-link will invalidate it.

6. Transport & storage

All web requests are over HTTPS only (HTTP is auto-redirected).
Reminder state is stored on a single-tenant server.
Backups are encrypted before they leave the box.

Right to delete

Any time you want everything we know about you to disappear, send:

@god forget-me

You can also delete each reminder individually with @god delete N.

Cookies & trackers

This site does not set cookies. It loads zero third-party scripts. There’s nothing tracking you across the open web from these pages.

Logs we keep

Standard web access logs (IP, time, URL, response code) — rotated every 30 days, only used for debugging.
Application logs of bot dispatch outcomes (e.g. “created reminder #3 for jid …”). No message content beyond the title you yourself set.

Reaching us

If you have a security or privacy concern, send @god help on WhatsApp and ask for a human. The operator monitors the account directly.