Privacy Policy

1. Data We Collect

When you use Ubserve, we collect certain information to provide our security audits:

• **Application URL**: The website address you provide for scanning.
• **Email Address**: Used to notify you of scan results and security alerts.
• **Scan Results**: Data identified during the audit (e.g., exposed keys, RLS status, SSL info).
• **GitHub Repository Details**: If you elect to use our GitHub Deep Scan feature.

2. How We Handle Secrets

Ubserve is designed with your security in mind. We do not permanently store your production API keys, secrets, or database credentials. During a scan, our system analyzes your application's public bundles and configuration in real-time. Any secrets identified are provided in your private report and are not accessible by our team or other users.

3. Use of Your Information

We use the data collected to:

• Generate and deliver your security audit reports.
• Provide biweekly rescans and security alerts (for paid plans).
• Improve our scanning algorithms for AI-built applications.
• Communicate with you regarding your account and service updates.

4. Third Parties

We do not sell your personal information or scan results to third parties. We may use trusted service providers for core functionality (such as email delivery or database hosting), but they are bound by strict confidentiality agreements.

5. Data Retention

We retain your audit history to help you track your security score over time. You may request the deletion of your account and related scan data at any time by contacting our support team.