Privacy Policy

We collect information you provide directly to us, information generated as you use our services, and limited technical data from your device.

Account information:

• Email address and password (hashed) when you register
• Full name if provided during sign-up
• Billing information processed securely via our payment provider

Usage data:

• Brand names, domains, and industries submitted for auditing
• Audit results and recommendation history
• Feature interactions and page views

Technical data:

• IP address, browser type, and device information
• Session tokens for authentication
• Error logs and performance diagnostics

We use the information we collect to:

• Provide, operate, and improve the Web Auditor service
• Process audit requests and deliver results to your dashboard
• Send transactional emails such as password resets and subscription confirmations
• Detect and prevent fraud, abuse, and security incidents
• Comply with legal obligations
• Analyse aggregate, anonymised usage patterns to improve product features

We do not sell your personal data to third parties. We do not use your audit data to train AI models.

We use cookies and similar technologies to keep you signed in, remember preferences, and understand how the product is used.

Essential cookies are required for the service to function and cannot be disabled.

Analytics cookies help us understand feature usage. These are only set if you accept cookies via our cookie banner.

You can withdraw consent at any time by clearing your browser cookies or via the cookie settings in your browser.

We share your information only in the following circumstances:

• With AI providers (OpenAI, Google) to process audit queries — only brand and industry context is sent, never account credentials
• With our payment processor to handle subscription billing
• With hosting and infrastructure providers under strict data processing agreements
• When required by law, court order, or to protect the rights and safety of users

All third-party providers are bound by data processing agreements that restrict how they may use your data.

We retain your account data for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law.

Audit results are retained for 12 months from the date of creation. You can delete individual audits from your dashboard at any time.

We implement industry-standard security measures including:

• TLS encryption for all data in transit
• Bcrypt password hashing — we never store plaintext passwords
• Role-based access control so your data is only accessible to you
• Regular security reviews and dependency audits

No method of transmission over the internet is 100% secure. We cannot guarantee absolute security, but we take reasonable steps to protect your data.

Depending on your location, you may have the following rights regarding your personal data:

• Right to access — request a copy of the data we hold about you
• Right to rectification — request correction of inaccurate data
• Right to erasure — request deletion of your account and associated data
• Right to portability — request your data in a machine-readable format
• Right to object — object to processing for direct marketing purposes

To exercise any of these rights, contact us at privacy@webauditor.ai. We will respond within 30 days.

Web Auditor is not directed to children under 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a child, please contact us immediately.

We may update this Privacy Policy from time to time. We will notify you of material changes by email or via an in-app notice at least 14 days before the changes take effect.

Continued use of the service after the effective date constitutes acceptance of the revised policy.

If you have questions about this Privacy Policy or our data practices:

• Email: privacy@webauditor.ai
• Address: Web Auditor, Inc., 1 Hacker Way, San Francisco, CA 94301

See also our Terms of Service.