Privacy Policy

Last updated: 4/20/2026

1. Information We Collect

We collect information you provide when creating an account (name, email), search queries you perform, and standard web analytics data (IP address, browser type).

2. How We Use Information

We use your information to provide and improve our services, process payments, enforce rate limits, and communicate with you about your account.

3. Data Retention

Search logs are automatically deleted after 90 days. Account data is retained until you delete your account. Reports are stored until you delete them.

4. GDPR Rights (EU Users)

If you are in the EU, you have the right to:

• Access your personal data
• Rectify inaccurate data
• Erase your data (right to be forgotten)
• Export your data in a machine-readable format
• Object to processing of your data

To exercise these rights, use the Settings page in your dashboard or contact us.

5. Legal Basis for Processing

We process your data based on: (a) your consent, (b) performance of our contract with you, (c) our legitimate business interests, and (d) compliance with legal obligations.

6. Data Security

We implement industry-standard security measures including encryption in transit (TLS), hashed passwords (bcrypt), and hashed API keys (SHA-256). We do not store plaintext passwords or API keys.

7. Third-Party Services

We use Stripe for payment processing and may use third-party APIs for OSINT data. Each service has its own privacy policy.

8. Cookies

We use essential cookies for authentication and session management. No tracking cookies are used.

9. Changes

We may update this policy. Significant changes will be communicated via email.

10. Contact

For privacy inquiries, contact our data protection team at privacy@osint-platform.com.