Effective Date: March 22, 2026
Account data: Name, email, and OAuth provider ID when you sign up via Google, GitHub, or GitLab.
Scan data: URLs you submit, scan results, findings, and scores.
Integration credentials: Supabase project ref + service_role key, Firebase project ID + service account — encrypted at rest, deleted after scan.
Usage data: IP address (hashed for rate limiting), browser type, pages visited.
To perform security scans you request. To display scan results and generate reports. To enforce rate limits and prevent abuse. To process payments via Stripe/PayPal. To send scan alerts if you opt in (email/Telegram).
Data is stored on AWS (us-east-1). Scan results are retained for 90 days. Integration credentials are encrypted with AES-256 and deleted immediately after scan completion. IP addresses are stored as SHA-256 hashes only.
We use: Stripe and PayPal for payments. Google, GitHub, GitLab for authentication. AWS for hosting. We do not sell your data to third parties.
You can request data export or deletion at any time by emailing privacy@sekrd.com. You can delete your account and all associated data from the dashboard.
We use essential cookies for authentication sessions. No tracking or advertising cookies.
Privacy questions? Email privacy@sekrd.com