We believe in transparency. Here's exactly what data we collect, how we use it, and how we protect your privacy.
Plain-language note
I initially used a privacy policy generator. It included items like IP address collection, which I do not collect. Below is the accurate list of what I actually collect and why.
Privacy-First Approach
I collect minimal data, never sell your information, and prioritize your security above all else. Your investigative work stays private.
Here's a complete breakdown of data collection across my services.
The website collects minimal analytics data to improve user experience:
Cloudflare Analytics
Page views, country data, and general usage patterns. No personal information. Blockable with ad blockers.
Email Addresses
Only when you sign up for newsletters or create an account. Used solely for authentication and communication.
IP Addresses
We do not log or store IP addresses on our servers.
Cookies
Only essential cookies for authentication and site functionality.
SIERRA is designed with privacy as a core principle:
Personal Data
SIERRA operates entirely offline and collects zero personal data.
Investigation Data
All your case files, graphs, and notes stay on your local machine.
Usage Analytics
No tracking, telemetry, or usage statistics are collected.
Network Requests
Only when you enable Cloud Invoker after "Connect to SIERRA Cloud" signin. Each request is explicit and per-invoker.
I collect the minimum needed. Stripe securely handles your payment. I never see your full card number or CVC.
What is collected
To complete a payment, Stripe may collect your name, email and billing address so the bank can verify the transaction.
What I can see
In Stripe I can see your name, email, billing address and receipts. Used only for receipts, support, tax records and fraud checks.
Stripe may process payment data in other countries. See Stripe's Privacy Policy for details.
View Stripe Privacy PolicyCloud Invoker is opt in. It requires "Connect to SIERRA Cloud" signin.
Account Sign-in
Authentication to your SIERRA Cloud account is required before any cloud features can run.
Invocation Requests
Only the inputs you approve are sent to SIERRA Cloud to run the selected Cloud Invoker. SIERRA Cloud does not store your inputs or share them with others, except when required to call the API service you choose.
Investigation Content
Your local graphs and notes remain on your machine unless an Invoker explicitly uploads data you approve.
If you have any questions about my privacy practices or want to exercise your data rights, please reach out.
Last updated: August 2025 • This policy applies to all PhantomHelix services
OSINT tools for modern investigators and security professionals.
© 2025 Phantom Helix Intelligence. All rights reserved.
Made with ❤️ for the OSINT community