Privacy Policy

We're security people. We take your privacy seriously (obviously).

Last Updated: February 2026

For Solo Founders & Small Teams: We know you're juggling a million things. This policy is written in plain English, and we only collect what's necessary to run your scans. No surprises.

What We Collect

We only collect what we need: your email, the sites you scan, and scan results. No tracking pixels, no behavioral analytics, no selling your data to advertisers. If you use the free tier without signing up, we collect even less.

How We Use Your Data

Your scan data helps us generate your security reports and show you what needs fixing. We might use anonymized, aggregated data to improve our scanners (like 'X% of sites have this issue'), but we never share your specific results or targets.

Keeping Your Data Safe

We're security people—this is what we do. Your scan data is encrypted at rest and in transit. We use the same security practices we recommend to you. Our workers are isolated and ephemeral, meaning scan data is wiped after processing.

Cookies & Tracking

We use cookies to keep you logged in. That's it. No ad tracking, no third-party analytics cookies. You can check your browser's dev tools—we're not hiding anything.

Your Scan Targets

We store the domains and IPs you scan so you can see your history and track changes over time. We never scan anything you didn't explicitly tell us to scan. Your targets stay private—we don't share them with anyone.

Third-Party Services

We use Better Auth for secure login and Resend for sending you scan completion emails. Both are privacy-focused services. We don't use Google Analytics, Facebook Pixel, or any ad tech.

Your Data, Your Control

Export your data, delete your account, or update your info anytime from your settings. No waiting periods, no 'contact us to delete' nonsense. One click and it's done.

Questions About Privacy?

If you have any questions about how we handle your data, we're here to help.

Get in Touch