I really want to be a part of good open-source projects

I get it, though I try to remind myself that perfection is the enemy of good. Especially in comparison to Discord which makes its money through [???] and is somehow only getting worse.

I based my assumptions on the parts in Revolts privacy policy, since reading the privacy policy of hCatpcha it alludes that each ‘vendor’ can select how much data they’d like to collect I assumed that Revolt only allowed them to collect IP, length of time on site and mouse movements. While they do sell information, they claim it to be anonymised and I contacted support to see how they did that for IP addresses.

Which is why I don’t really mind. The information they have of me is at most how my cursor moved, how long I took to Submit a login request, Submit a registration request, Submit a password reset / email resend request and an obfuscated IP. Seems OK to me.

That’s the part of hCaptchas policy that’s relevant to Revolt.

For the analysis, hCaptcha evaluates various information (e.g. IP address, how long the visitor has been on the website or app, or mouse movements made by the user). The data collected during the analysis will be forwarded to IMI.

Doesn’t seem that bad, when you go to log in it checks your IP, length of time on the site and mouse movements.

hCaptcha

This section has been adapted from hCaptcha’s documentation.

We use the hCaptcha anti-bot service (hereinafter “hCaptcha”) on our website. This service is provided by Intuition Machines, Inc., a Delaware US Corporation (“IMI”). hCaptcha is used to check whether the data entered on our website (such as on a login page or contact form) has been entered by a human or by an automated program. To do this, hCaptcha analyzes the behavior of the website or mobile app visitor based on various characteristics. This analysis starts automatically as soon as the website or mobile app visitor enters a part of the website or app with hCaptcha enabled.

When using the Revolt App, hCaptcha will only begin analysis when you:

Submit a login request.
Submit a registration request.
Submit a password reset / email resend request.

For the analysis, hCaptcha evaluates various information (e.g. IP address, how long the visitor has been on the website or app, or mouse movements made by the user). The data collected during the analysis will be forwarded to IMI.

Data processing is based on Art. 6(1)(f) of the GDPR (DSGVO): the website or mobile app operator has a legitimate interest in protecting its site from abusive automated crawling and spam. IMI acts as a “data processor” acting on behalf of its customers as defined under the GDPR, and a “service provider” for the purposes of the California Consumer Privacy Act (CCPA). For more information about hCaptcha and IMI’s privacy policy and terms of use, please visit the following links: https://hcaptcha.com/privacy/ and https://hcaptcha.com/terms.

What does Israel have to do with this?