Privacy policy

Last updated: February 2026

1. Data we collect

When you use Ghost Scan, we collect: the URL you submit, the email address you provide, and publicly accessible content from the scanned website (page content, screenshots, metadata). We do not access private systems, login-protected pages, or customer data.

2. How we use your data

Your email is used to deliver scan results. Website scan data is used to generate your integrity report. We may use aggregated, anonymised data to improve our scanning accuracy and service.

3. Third parties

We use third-party services to operate Ghost Scan: cloud hosting (Vercel), database (Supabase), email delivery (Resend), website crawling (Firecrawl), and AI analysis (Anthropic). These providers process data on our behalf under their respective privacy policies.

4. Data retention

Scan results are retained for 12 months. You can request deletion of your data at any time by contacting us.

5. Your rights

Under GDPR, you have the right to access, correct, delete, or export your personal data. You may also object to or restrict processing. To exercise these rights, contact us at the email below.

6. Contact

For privacy questions or data requests, contact us at hello@stiplo.io