Data Transparency
How your data is processed, encrypted, stored, and deleted.
What We Don't Do
- ●We do not use your data to train any AI model
- ●We do not sell or share your data with third parties
- ●We do not store raw audio or video
- ●We do not record your live streams
- ●We do not collect voice samples without explicit consent
Live Stream (Screen + Audio)
- ●Processed in memory — never written to disk
- ●Not recorded, not stored, not forwarded to third parties
- ●Discarded immediately after processing
Audio
- ●Standard mode: transcribed to text via speech recognition, original audio discarded immediately
- ●Premium Audio: raw audio sent directly to AI model for processing, not retained afterward
- ●Audio never touches persistent storage
Screen Data
- ●Screen frames sent to AI model for visual understanding
- ●Not permanently stored
- ●Premium Vision: second-level granularity video understanding by AI model
Voice Samples
- ●User-initiated upload only, requires explicit consent
- ●Envelope encryption: each sample gets its own AES-256-GCM key, wrapped by an application master key
- ●Storage layer provides additional encryption (double encryption)
- ●Deletable anytime — immediately inaccessible after deletion, underlying storage copies fully purged within 30 days
- ●Never used for training, never shared
AI Memory
- ●Short-term memory: adjustable context window — the system only retains what the AI actually uses, nothing extra
- ●Long-term memory: AI-managed compressed memory, encrypted at rest
- ●Both can be cleared by the user at any time
Monstera Platform Stream
- ●JWT authentication + IP binding + TLS transport encryption
- ●Only your AI can access your stream
- ●Not recorded, not stored, not forwarded
Account Data
- ●Email, username, password hash (bcrypt with salt)
- ●Payments processed by a third-party provider — card numbers and payment details never touch our servers
Audit Logs
- ●Service communication logs retained for security auditing
- ●Automatically rotated and purged on schedule
AI Model Providers
- ●All AI requests are made server-side — your device never connects to model endpoints directly
- ●Requests routed through Cloudflare AI Gateway → OpenRouter (two-layer proxy) — providers do not know who you are
- ●We strictly select providers that OpenRouter marks as: "does not use your prompts and completions to train new models" and "submits API requests to this provider anonymously"
- ●Some requests may call Google APIs directly, all under zero-retention data usage policies
Current Providers
GoogleOpenAIGroq
Updated March 2026
Platform Authentication
How Monstera connects to your streaming platforms:
| Platform | Method | Reason |
|---|---|---|
| Twitch | OAuth | Official API supported |
| YouTube | OAuth | Official API supported |
| Kick | OAuth | Official API supported |
| Bilibili | Cookie | No official OAuth API available |
All credentials (OAuth tokens and cookies) are encrypted at rest with AES-256-GCM
Service-to-Service Security
- ●All internal communication signed with HMAC-SHA256 + timestamp verification
- ●Replay attack prevention via timestamp tolerance window
- ●Timing-safe comparison to prevent side-channel attacks
What You Control
- ●Delete voice samples: management page, immediately inaccessible after deletion
- ●Clear all AI memory (conversation + long-term): anytime
- ●Delete account: self-service button, account deactivated immediately, associated data fully purged within 30 days
- ●User Experience Improvement Program: opt-in analytics, can be disabled anytime in settings
If we receive a government or legal data request, we will notify affected users to the extent permitted by law.
Questions about privacy or data handling? Contact us