Privacy Policy

1. Data We Collect

Account data: Email address and hashed password when you create an account.

Audit data: URLs you submit for scanning, the HTML content fetched during audits, and the resulting scores and check results. URLs are stored without query parameters to avoid capturing sensitive data.

Usage data: Basic analytics (page views, feature usage) to improve the product.

2. How We Store Data

All data is stored in Supabase (PostgreSQL) with row-level security policies. Your data is only accessible to you when logged in. We do not store the full HTML of scanned pages after the audit is complete.

3. Third-Party Services

We use the following third-party services:

• Google PageSpeed Insights API — to collect performance and accessibility data. Google receives the URL you submit for scanning.
• Stripe — to process payments. Stripe handles all payment card data; we never see or store your card details.
• Vercel — to host the application. Standard server logs (IP addresses, request paths) are retained per Vercel's privacy policy.
• Supabase — to store application data and handle authentication.

4. Cookies

We use essential cookies for authentication (session management). We do not use advertising or third-party tracking cookies.

5. Your Rights

You can request a copy of your data, correction of inaccurate data, or deletion of your account and all associated data at any time by contacting us. Account deletion is permanent and cannot be undone.

6. Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated via email to registered users. Continued use of the service after changes constitutes acceptance.