隐私政策
EchoBird 是一个独立项目,这页说明我们在你访问 echobird.ai 时如何处理你的个人信息。简短版:我们直接处理的极少,几乎所有事都委托给了能合法承担这件事的第三方。
1我们直接收集什么
echobird.ai 主站是托管在 Cloudflare Pages 上的纯静态站点,**我们这一侧不运行任何服务器日志或分析追踪**。 你访问首页 / 课程页 / Pulse 页 / 法律页 时,我们不知道你是谁、不知道你从哪来、不知道你点了什么。
2打赏时 Paddle 收集什么
当你在 /support/ 页面发起打赏,所有支付流程由 Paddle 处理。Paddle 作为 Merchant of Record(注册商户),会收集:
- 你的邮箱地址(用于发收据)
- 计费国家 / 地区(用于计算税务)
- 信用卡支付时:卡号 / 持卡人姓名 / 计费地址(EchoBird 永远看不到,这些数据只存在于 Paddle 与卡组织之间)
- 微信 / Apple Pay / Google Pay 支付时:由对应通道处理,EchoBird 同样看不到
- IP 地址(Paddle 用于反欺诈)
EchoBird 从 Paddle 收到的交易摘要只包含:档位名 (Coffee / Lunch / Feast)、金额、货币、日期、邮箱。 我们不接触任何卡号、地址、IP 或其他敏感信息。Paddle 的完整隐私政策见 paddle.com/legal/privacy。
3本地浏览器存了什么
/support/ 页面用 localStorage 记你上次选的语言(zh-CN 或 en),
仅此一项,刷新后保持你的偏好。这个值不会发送到任何服务器,清浏览器数据即可清除。
4我们用到的第三方
- Cloudflare — CDN 与静态站托管。Cloudflare 会按其自身策略记录边缘节点访问日志
- Paddle — 支付处理与 Merchant of Record
- GitHub — 用户反馈走 GitHub Issues,你在那里留言适用 GitHub 自己的隐私政策
- Google Fonts — 字体托管。Google 可能记录字体加载请求来源
5我们不做什么
- 不卖 / 不交换 / 不出借任何用户数据给广告商或数据经纪人
- 不放 Google Analytics、Facebook Pixel 或任何分析追踪脚本
- 不主动发邮件 —— Paddle 收据是支付的必然组成,EchoBird 自身不会单独 email 你
6你的权利
根据你所在地区适用的法律(GDPR / CCPA / 个人信息保护法 等),你可以要求查询、更正或删除我们持有的关于你的信息。 由于我们直接持有的极少,绝大多数请求需要联系 Paddle —— 见上面第 2 节。 EchoBird 这边能配合的部分:邮件 [email protected]。
7政策变更
本政策可能在不通知的情况下修改。重大变更会在 /support/ 页面以横幅提示至少 30 天。"最后更新"日期反映最新版本。
8联系
任何与隐私相关的问题、请求、投诉:[email protected]。 我们通常 3 个工作日内回复。
Privacy Policy
EchoBird is an independent project. This page explains how we handle your personal information when you visit echobird.ai. The short version: we handle very little ourselves — almost everything is delegated to third parties legally equipped to do so.
1What we collect directly
echobird.ai is a static site hosted on Cloudflare Pages. We do not run any server-side logs or analytics tracking on our side. When you browse the homepage, courses, pulse, or these legal pages, we don't know who you are, where you came from, or what you clicked.
2What Paddle collects when you tip
When you tip via /support/, all payment flow is handled by Paddle. As Merchant of Record, Paddle collects:
- Your email address (for receipts)
- Billing country / region (for tax calculation)
- For card payments: card number / cardholder name / billing address — EchoBird never sees this; it stays between Paddle and the card networks
- For WeChat / Apple Pay / Google Pay: handled by those rails; EchoBird never sees details either
- IP address (Paddle uses this for fraud detection)
The transaction summary EchoBird receives from Paddle contains only: tier name (Coffee / Lunch / Feast), amount, currency, date, email. We have no access to card numbers, addresses, IPs, or other sensitive data. Paddle's full privacy policy is at paddle.com/legal/privacy.
3What's stored in your browser
The /support/ page uses localStorage to remember your language choice
(zh-CN or en) — that's it. This value is never sent to any
server. Clearing browser data clears it.
4Third parties we use
- Cloudflare — CDN and static hosting. Cloudflare logs edge access per its own policies
- Paddle — payment processing and Merchant of Record
- GitHub — user feedback goes through GitHub Issues; posting there is governed by GitHub's own privacy policy
- Google Fonts — font hosting. Google may log font load requests by origin
5What we don't do
- We do not sell, trade, or rent user data to advertisers or data brokers
- We do not load Google Analytics, Facebook Pixel, or any analytics tracking scripts
- We do not send unsolicited email — Paddle receipts are a necessary part of payments; EchoBird itself will not email you separately
6Your rights
Under laws that may apply to you (GDPR / CCPA / PIPL etc.), you may request access, correction, or deletion of information we hold about you. Since we hold so little directly, most requests need to go to Paddle (see section 2 above). For what EchoBird can act on: [email protected].
7Changes to this policy
This policy may be updated without notice. Material changes will be flagged on the /support/ page via a banner for at least 30 days. The "Last updated" date reflects the latest revision.
8Contact
Any privacy-related question, request, or complaint: [email protected]. We typically respond within 3 business days.