GDPR · CCPA · NO SALE OF DATA

DomainScan privacy policy — what we collect, why, how long we keep it, who we share it with and how you can exercise your rights.

This is a plain-English summary of the legal policy. Short version: we collect the minimum needed to operate the service, we don't sell user data, and you can delete your account and associated data at any time from the dashboard. Domain lookups are made against public registries — they are not personal data. Read the full clauses below for the detailed legal version.

01 · WHAT WE COLLECT

Data we collect, in plain English

Three buckets — account data, usage telemetry and tool inputs. Each is treated differently:

  • Account data Email address, hashed password (bcrypt with per-user salt), display name (optional), plan tier and Stripe customer ID. Never plaintext passwords. Never card numbers (held by Stripe).
  • Usage telemetry Per-request: timestamp, endpoint path, HTTP status, API-key prefix, rate-limit consumption. We do not store the inputs (domain names, IPs) you pass to tools — only that a call happened.
  • Tool inputs Inputs you submit to tools (domain names, IP addresses, etc.) are processed in memory and forwarded to upstream sources. They are not persisted to our database, not logged, and not used for any analytics.
  • Cookies Two strictly-necessary cookies (session, CSRF). One opt-in analytics cookie (Google Analytics 4). No third-party advertising cookies. No cross-site tracking.
  • Communications If you contact support or subscribe to the newsletter, we store your email and message content for the duration of the conversation plus 12 months for support continuity.
02 · WHY

What we use the data for

Each data point has a single declared purpose. We do not repurpose data without explicit consent.

  • Operating the service Authentication, rate limiting, billing, anti-abuse. We can't run the API without the account/usage data above.
  • Aggregate analytics Counting requests per endpoint to plan capacity and prioritize features. Aggregated and unattributable to any individual user.
  • Customer support Resolving your tickets. Support agents only access account/usage data for the user who filed the ticket.
  • Security & abuse prevention Detecting compromised credentials, brute-force login attempts, key abuse and DDoS patterns. Suspicious traffic is rate-limited or blocked.
03 · THIRD PARTIES

Who we share data with — and what they see

Five sub-processors, each scoped to a specific function:

  • Cloudflare Edge hosting, CDN, DDoS protection. Sees IP addresses and HTTP requests in transit. Does not see plaintext credentials or tool inputs (TLS-terminated at edge then re-encrypted to origin).
  • Stripe Payment processing for paid plans. Sees payment card data (we never do), email and amount. PCI DSS Level 1 certified.
  • Postmark / Resend Transactional email (magic links, password resets, billing receipts). Sees email address and email content.
  • Google Analytics 4 Anonymized page-view analytics. IP anonymization enabled. Opt-in only — disabled by default in EU/UK.
  • OpenAI / Anthropic When you invoke the Prism AI assistant, your prompt is forwarded to the model provider for inference. Not retained for training. Disable AI features entirely by avoiding the /chat surface.
04 · RIGHTS

Your rights and how to exercise them

GDPR and CCPA give you specific, enumerated rights. We honor all of them globally — not just for residents of those jurisdictions:

  • Access Download all data we have about you (JSON export). Available from Settings → Privacy → Export, or by emailing [email protected].
  • Correction Edit any incorrect data via Settings, or request correction via [email protected].
  • Deletion Self-serve delete from Settings → Account → Delete. Deletes all account data, usage logs and personal info within 30 days. Anonymized aggregate analytics may persist.
  • Portability JSON export covers all portable data. We do not lock you in.
  • Opt-out of analytics Disable analytics from Settings → Privacy. Takes effect immediately, no retroactive removal of historical aggregated counts.
  • Object to processing Email [email protected]. We will respond within 30 days with the action taken or the lawful basis for continued processing.
05 · RETENTION

How long we keep data

Default retention windows. Shorter on request, longer only for compliance/legal reasons.

  • Account data For the lifetime of the account, then 30 days after deletion request before permanent purge.
  • Usage logs 90 days for operational debugging, then aggregated and the per-user copy is deleted.
  • Billing records 7 years (tax / accounting compliance). Cannot be deleted earlier — even on account deletion.
  • Security logs 12 months for incident investigation, then aggregated.
  • Backups Daily backups retained for 30 days. Deleted data is purged from backups within 30 days of the original deletion.
06 · CONTACT

Get a hold of the privacy team

For any privacy-specific request — access, deletion, complaint, regulatory inquiry — write to:

  • [email protected] Primary channel. Response within 30 days, usually within 5 business days.
  • Data Protection Officer Designated DPO contact for EU/UK GDPR matters. Email [email protected].
  • Supervisory authority EU residents may also lodge a complaint with their national supervisory authority if they believe their rights have been violated.