Privacy Policy

Effective 1 June 2026

The short version

We collect as little as the service can function on. We don't track you across the web, we don't sell data, and we don't store the contents of the sites we scan beyond the findings that make up your report. Report URLs are unguessable and unlisted.

What we collect

  • Scan input & results. The domain you submit, the timestamp, and the findings produced - grade, issue counts, and the specific issues with their fix guidance. We retain the findings, not a copy of your site.
  • Email - only when you unlock. To unlock a full report you verify an email at the scanned domain. We store that address, a short-lived verification code, and the fact that verification succeeded. The code expires within 15 minutes.
  • Payment metadata. When you buy, our payment processor returns a transaction identifier and the amount/currency, which we store to mark the report paid and to honour subscriptions and re-scan windows. We never see or store your card details.
  • Minimal request data. IP-derived rate-limit counters and standard server logs, used to prevent abuse and bound cost. We do not build advertising profiles.

What we don't collect

  • No card numbers - those go straight to our payment processor.
  • No advertising or cross-site tracking cookies.
  • No copies of the pages, source, or user data of the sites we scan - the scan is passive and read-only.

How report URLs work

Every report lives at a URL containing an unguessable random identifier (a UUID). We do not list, index, or publish reports, and we do not reveal whether any given domain has been scanned. Anyone with the URL can view the report, so treat the link like a password - share it only with people you trust. The full report contents are only ever sent to the browser after the report is unlocked.

Who processes data for us

We rely on a small number of processors, each for a single purpose:

  • Paddle - merchant of record; processes payments and handles card data, billing, and tax. See Paddle's own privacy notice for how they handle your payment information.
  • Postmark - delivers transactional email (verification codes and re-scan notifications).

The AI layer that turns raw findings into plain-English explanations runs on our own infrastructure. We do not send your scan data to a third-party AI vendor.

Retention

Verification codes expire within 15 minutes and are then useless. Reports and their associated email and payment metadata are retained so you can return to a report you paid for and so subscriptions work. You can ask us to delete a report and its associated data at any time (see below). Rate-limit counters and server logs are short-lived and rotate out automatically.

Your choices

You can request access to, correction of, or deletion of the personal data we hold about you - including deleting a report tied to your email. Email [email protected] from the address you verified and we'll action it. If you operate a domain and don't want it scanned at all, see the opt-out options on the scanner information page.

Cookies

We use only what's necessary to run the service - there are no advertising or analytics-profiling cookies. Our payment processor may set cookies as part of the checkout flow; those are governed by their policy.

Changes & contact

We'll update the effective date above when this policy changes materially. Questions about privacy: [email protected].

See also our Terms of Service.