Privacy Policy

When you use DeploySafe, we collect: - Account information - your email address when you sign up - Scan targets - the URLs you submit for scanning - Scan results - vulnerability findings generated from your scans - Usage data - page views and feature interactions via PostHog analytics

If you use authenticated scanning, any login credentials you provide are used solely to perform the scan against your application. They are not stored, logged, or retained after the scan completes. We do not sell, rent, or share your personal data with third parties for marketing purposes.

We use the data we collect to: - Provide and operate the DeploySafe service - Associate scan results with your account - Process payments and manage credit balances - Improve the platform through aggregated, anonymised usage analytics

DeploySafe uses the following third-party services, each with their own privacy policies: - Supabase - authentication and database storage - Polar - payment processing - PostHog - product analytics (anonymised usage data) We share only the minimum data necessary with each provider to deliver the service.

Scan results are retained for as long as your account is active. You can delete individual scans from your dashboard at any time. If you delete your account, your scan history and personal data are permanently removed from our systems within 30 days.

We take reasonable measures to protect your data, including encrypted connections (HTTPS), access controls, and row-level security on our database. No system is completely secure. If you discover a security issue in DeploySafe itself, please disclose it responsibly by contacting [email protected].

You have the right to access, correct, or delete the personal data we hold about you. To make a request, contact us at [email protected]. If you are based in the EU or UK, you also have rights under the GDPR, including the right to data portability and the right to lodge a complaint with your local supervisory authority.

We may update this policy from time to time. Material changes will be communicated via email where possible. Continued use of DeploySafe after changes are posted constitutes acceptance of the updated policy.

For privacy-related questions or requests, contact us at [email protected].