Privacy Policy
Version 2026-07-08
1. What data we collect
- Your email and password (the password is stored encrypted, never as plain text).
- Results of your scans: domain, version, plugins, findings, file hashes.
- Your IP and date on every scan and every legal acceptance (for abuse control and consent recording).
2. What we DON'T store
We don't permanently store the raw content of your site's files. When the internal analysis needs to review a file, it's processed and discarded. Backup copies used to revert a cleanup are stored temporarily (30 days) and then deleted.
3. Third parties (subprocessors)
To provide the service we share minimal data with:
- Anthropic — for AI analysis of suspicious files (plans that include cleanup).
- Vulnerability databases (NVD, wpvulnerability.net, WPScan) — to look up CVEs.
- Payment processors (MercadoPago, Lemon Squeezy) — to charge subscriptions.
- Cloudflare — as CDN/proxy and anti-bot verification.
4. Use of data
We use your data only to provide the service. We don't sell or transfer your data to third parties for commercial purposes.
5. Your rights
You can request access, correction or deletion of your data by writing to us. Deleting your account erases your personal data and your scan history.