HeartEcho - 心声回响

Zero Hardware Tracking Pledge

At HeartEcho, only souls that understand you exist, not eyes that monitor you. We do not track your physical devices, collect device fingerprints, record IP addresses, or use any form of hardware identifiers.

1. Information Collection

HeartEcho is an anonymous emotional support application. We only collect content you actively provide:

Tree hole sharing content (anonymous, not linked to personal identity)
Emotion tags you select
Encrypted user identifier via Google sign-in (only used for paid service binding)
Payment transaction records (processed through Waffo Pancake; we do not store full card numbers)

2. Data Encryption

All conversation content is encrypted and stored on the client side using AES-GCM. The encryption key is only stored on your device; servers cannot decrypt your conversation content. We use a "zero-knowledge" architecture: even if the database is compromised, attackers cannot read your sharing content.

3. Data Deletion

You can delete all data with one click from your profile center at any time. Once deleted, it cannot be recovered. Anonymous sessions with 7 consecutive days of inactivity are automatically anonymized; 30 days of inactivity triggers permanent deletion.

4. Third-Party Services

We use the following third-party services, passing only necessary information:

DeepSeek API — for AI emotional analysis (anonymous text, not linked to users)
Waffo Pancake — payment processing (only transaction amount and currency information)
Google OAuth — social sign-in (only encrypted identity identifier)

5. Contact Us