VisionLeeDocumentation
Documentation HubTerms of ServicePrivacy PolicyAcceptable Use PolicyLaw Enforcement Guidelines

Last updated: March 2026

Privacy Policy

This Privacy Policy describes how VisionLee LLC ("VisionLee," "we," "us," or "our") collects, uses, retains, and protects information in connection with the Dokibada platform (the "Service"). This policy applies to all users of the Service, including Firms (content providers) and Viewers.

By using the Service, you consent to the practices described in this Privacy Policy. If you do not agree with this policy, you must not use the Service.

1. What We Collect

1.1 Account Information

When you register for an account as a Firm, we collect:

  • Email address
  • Firm name and description
  • Account credentials (passwords are stored as bcrypt hashes; we never store plaintext passwords)
  • OAuth provider identifiers (if you register via Google or GitHub)

1.2 Connection Metadata

When peers connect through the Dokibada signaling server, we automatically log the following connection metadata:

  • Firm ID: The identifier of the Firm providing the stream
  • Stream ID: A unique identifier for each streaming session
  • IP Address Hashes: IP addresses are cryptographically hashed before storage using a one-way hash function. We do not store raw IP addresses when privacy mode is enabled (enabled by default)
  • Timestamps: Connection start time, end time, and duration
  • ICE Method: The type of connection established (direct peer-to-peer, STUN, or TURN relay)
  • User Agent: Browser or client application identifier

1.3 Technical Data

We may automatically collect:

  • Browser type and version
  • Operating system
  • WebRTC capability information
  • Connection quality metrics (latency, packet loss, bandwidth estimates)

1.4 What We Do NOT Collect

VisionLee does NOT collect, access, intercept, store, process, or monitor any video, audio, or other media content transmitted between peers. The Dokibada platform provides signaling infrastructure only. All media content flows directly between peers via encrypted WebRTC connections. Even when TURN relay is used as a fallback, content is encrypted end-to-end and is not accessible to VisionLee.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Operation: To facilitate WebRTC signaling, establish peer connections, and maintain platform functionality
  • Authentication: To verify your identity and authorize access to the Service
  • Compliance: To maintain legally required connection logs and respond to valid legal requests from law enforcement
  • Platform Integrity: To detect, prevent, and address abuse, fraud, security incidents, and violations of our Acceptable Use Policy
  • Analytics: To generate aggregate, anonymized usage statistics for platform improvement (such as connection success rates, TURN fallback rates, and capacity planning)
  • Communication: To send you service-related notices, including security alerts, policy updates, and account notifications

3. Data Retention

3.1 Connection Logs

Connection metadata logs are retained in append-only, tamper-evident storage for compliance purposes. These logs are maintained using a hash chain verification system that ensures their integrity. Connection logs are retained for a minimum of two (2) years from the date of creation, or longer if required by applicable law or a pending legal proceeding.

3.2 Account Data

Account information is retained for as long as your account is active. If you request account deletion, we will delete your account information within thirty (30) days, except for connection logs which are retained as described above and any data we are required to retain by law.

3.3 Aggregate Data

We may retain anonymized, aggregate data indefinitely for analytics and service improvement purposes. This data cannot be used to identify individual users.

4. IP Address Hashing

When privacy mode is enabled (which is the default configuration), IP addresses are processed through a one-way cryptographic hash function (SHA-256 with a rotating salt) before being stored in connection logs. This means:

  • We can verify whether a specific IP address matches a stored hash (for compliance purposes when provided with the IP address in a legal request)
  • We cannot reverse the hash to recover the original IP address from our stored data alone
  • The salt is rotated periodically to limit the window of correlation

5. Third Parties

5.1 Service Providers

We may share information with third-party service providers who perform services on our behalf, such as:

  • Cloud infrastructure providers (for hosting the signaling server and database)
  • Email service providers (for account-related communications)
  • Authentication providers (Google, GitHub for OAuth login)

These service providers are bound by contractual obligations to use your information only as necessary to perform services for us and to protect your information.

5.2 Law Enforcement

VisionLee will disclose information to law enforcement authorities only in response to valid legal process, including subpoenas, court orders, or search warrants issued by a court of competent jurisdiction. We will comply with applicable law regarding the scope of disclosure. Where permitted by law, we will attempt to notify affected users before disclosing their information in response to legal process.

For more information, see our Law Enforcement Guidelines.

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such transfer and any choices you may have regarding your information.

5.4 No Sale of Personal Data

VisionLee does not sell, rent, or trade your personal information to third parties for their marketing or advertising purposes.

6. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

  • Access: You may request a copy of the personal information we hold about you
  • Correction: You may request that we correct inaccurate personal information
  • Deletion: You may request that we delete your personal information, subject to our data retention obligations
  • Portability: You may request a copy of your data in a structured, commonly used, machine-readable format (JSON or CSV)
  • Objection: You may object to certain processing of your personal information
  • Restriction: You may request that we restrict certain processing of your personal information

To exercise any of these rights, contact us at privacy@visionlee.com. We will respond to your request within thirty (30) days.

7. Cookies and Tracking

The Service uses the following types of cookies and similar technologies:

  • Essential Cookies: Required for authentication and session management. These cookies are strictly necessary for the Service to function and cannot be disabled
  • Functional Cookies: Used to remember your preferences (such as dashboard settings and theme preferences)

We do not use third-party advertising cookies, social media tracking pixels, or cross-site tracking technologies. We do not participate in ad networks or behavioral advertising programs.

8. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • Encryption in transit (TLS 1.2+) for all communications with the signaling server
  • Encryption at rest for stored data
  • Cryptographic hashing of IP addresses
  • Append-only, tamper-evident log storage with hash chain verification
  • Access controls limiting employee access to personal data on a need-to-know basis
  • Regular security reviews and updates

No method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

9. Children's Privacy

The Service is not directed to children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us at privacy@visionlee.com, and we will take steps to delete such information.

10. International Data Transfers

VisionLee LLC is based in the United States. If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction. By using the Service, you consent to the transfer of your information to the United States.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by posting the updated policy on the Service, updating the "Last updated" date, and, where applicable, sending you an email notification. Your continued use of the Service after the effective date of the revised policy constitutes your acceptance of the changes.

12. Contact Information

If you have questions or concerns about this Privacy Policy or our data practices, please contact us: