Privacy Policy

1. Introduction

Content Petit LLC ("Company," "we," "us," or "our"), located at 16192 Coastal Highway, Lewes, Delaware, operates the SecureSaaS website vulnerability scanning platform at scanmysaas.com ("Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our Service.

By using our Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access the Service.

2. Information We Collect

2.1 Personal Information

When you register for an account or use our Service, we may collect:

• Name and email address
• Account credentials (password is stored in hashed form)
• Billing information processed through Stripe (we do not store credit card numbers)
• URLs of websites you submit for scanning

2.2 Automatically Collected Information

When you access our Service, we may automatically collect:

• IP address and browser type
• Device information and operating system
• Pages visited and time spent on pages
• Referring website addresses
• Cookies and similar tracking technologies

2.3 Scan Data

When you use our vulnerability scanning Service, we collect and process information about the target websites you scan, including discovered vulnerabilities, security headers, SSL configurations, and other security-related findings. This data is stored to provide you with scan reports and history.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our vulnerability scanning Service
• Create and manage your account
• Process transactions and send related billing information
• Generate vulnerability scan reports
• Send you technical notices, updates, and security alerts
• Respond to your comments, questions, and support requests
• Monitor and analyze usage trends to improve user experience
• Detect, prevent, and address technical issues and abuse

4. Data Sharing and Disclosure

We do not sell your personal information. We may share information in the following situations:

• Service Providers: We share data with third-party vendors who assist in operating our Service (e.g., Stripe for payment processing, hosting providers for infrastructure).
• Legal Requirements: We may disclose information if required to do so by law or in response to valid requests by public authorities.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as a business asset.
• With Your Consent: We may share your information for any other purpose with your explicit consent.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including encryption in transit (TLS/SSL), hashed passwords, and secure infrastructure. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our Service. Scan results are retained in your account until you delete them or close your account. We may retain certain information as required by law or for legitimate business purposes.

7. Cookies

We use cookies and similar tracking technologies to maintain your session, remember your preferences, and analyze how our Service is used. You can instruct your browser to refuse all cookies or indicate when a cookie is being sent. However, some features of the Service may not function properly without cookies.

8. Third-Party Services

Our Service integrates with or uses the following third-party services, each with their own privacy policies:

• Stripe — for payment processing
• Vercel — for hosting and infrastructure
• Supabase — for database services

We encourage you to review the privacy policies of these third-party services.

9. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

• Access, correct, or delete your personal information
• Object to or restrict the processing of your data
• Data portability — receive a copy of your data in a structured format
• Withdraw consent at any time where processing is based on consent
• Lodge a complaint with a supervisory authority

To exercise any of these rights, please contact us at stefan@scanmysaas.com.

10. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to remove that information.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those of your country. By using our Service, you consent to such transfers.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

13. Contact Us

If you have any questions about this Privacy Policy, please contact us: