Privacy Policy

Last updated: January 2025

ADACheck ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our accessibility scanning service.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Email address, name, company name, and password when you create an account
  • Payment Information: Billing address and payment card details (processed securely by our payment processor)
  • Scan Requests: Website URLs you submit for scanning
  • Communications: Messages you send to our support team

1.2 Information Collected Automatically

  • Usage Data: Pages visited, features used, scan history, and interaction patterns
  • Device Information: Browser type, operating system, device identifiers
  • Log Data: IP address, access times, referring URLs
  • Cookies: See our Cookie Policy

1.3 Information from Scanned Websites

When you scan a website, we temporarily collect:

  • HTML content of scanned pages
  • Screenshots of scanned pages
  • Accessibility findings and metadata

This data is used solely to generate your accessibility report and is automatically deleted after 30 days unless you save it to your account.

2. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve our Service
  • Process transactions and send related information
  • Send technical notices, updates, and security alerts
  • Respond to your comments, questions, and support requests
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues or fraud
  • Develop new features and services

3. How We Share Your Information

We do not sell your personal information. We may share information with:

3.1 Service Providers

Third-party vendors who perform services on our behalf (hosting, payment processing, analytics, email delivery). These providers are contractually obligated to protect your information.

3.2 Legal Requirements

We may disclose information if required by law, regulation, legal process, or governmental request.

3.3 Business Transfers

In connection with a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change.

4. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • Encryption of data in transit (TLS) and at rest
  • Regular security assessments and penetration testing
  • Access controls and authentication requirements
  • Employee security training

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

5. Data Retention

  • Account Data: Retained while your account is active and for 90 days after deletion
  • Scan Data: Automatically deleted after 30 days unless saved to your account
  • Saved Reports: Retained until you delete them or close your account
  • Log Data: Retained for up to 12 months for security and analytics

6. Your Rights

Depending on your location, you may have rights to:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data
  • Portability: Request your data in a portable format
  • Opt-out: Opt out of marketing communications
  • Restrict Processing: Request limitation of data processing

To exercise these rights, contact us at privacy@adacheck.io.

7. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by relevant authorities.

8. Children's Privacy

Our Service is not intended for children under 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

9. California Privacy Rights (CCPA)

California residents have additional rights:

  • Right to know what personal information is collected
  • Right to know whether personal information is sold or disclosed
  • Right to opt out of the sale of personal information (we do not sell your data)
  • Right to non-discrimination for exercising privacy rights

10. European Privacy Rights (GDPR)

If you are in the European Economic Area, you have rights under the General Data Protection Regulation, including the rights described in Section 6. Our legal basis for processing includes:

  • Contract: Processing necessary to provide our Service
  • Legitimate Interests: Improving our Service and preventing fraud
  • Consent: Where you have provided explicit consent
  • Legal Obligation: Compliance with applicable laws

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by posting the new policy and updating the "Last updated" date. Your continued use of the Service after changes constitutes acceptance.

12. Contact Us

For questions about this Privacy Policy or our data practices, contact us at:

Email: privacy@adacheck.io

For GDPR-related inquiries, you may also contact our Data Protection Officer at dpo@adacheck.io.