Security and trust
This page is maintained by Dilusena to answer common security and privacy questions. The content is provided by the service provider and is not certified or audited by any independent party.
Sign-in and access control
Accounts are protected with email and password sign-in as well as optional Google sign-in. Each user can access only their own data, and server-side functions verify the user's identity from an authenticated session token — tokens sent by the user's browser are not trusted as-is.
Platform and data centers
Dilusena runs on a managed cloud platform that provides the database, authentication, file storage and server logic. Traffic is encrypted in transit (HTTPS). Responsibility is shared: the platform handles infrastructure security and Dilusena handles the application's own practices.
Data collection and use
We collect only the data necessary for the service to function. Analytics and feedback data are anonymous: we do not link names, email addresses or photos to them.
Subprocessors and integrations
We use trusted service providers for, among other things, AI analysis, payment processing and backend services. Payments are processed by Stripe; card details are never handled or stored by Dilusena.
Retention and deletion
You can delete your items and photos from the app. As a registered user, you can request deletion of your account and related data by contacting support.
Security contact and vulnerability reporting
If you suspect a security issue or want to report a vulnerability, please contact: support@dilusena.com
We'll reply as soon as possible.