Privacy Policy

Last updated: February 12, 2026

What We Collect

• Account info: Email address, name, and avatar (from OAuth providers like GitHub/Google)
• Usage data: URLs fetched, request timestamps, response times, and fetch method used
• Payment info: Processed securely by Stripe. We never store card numbers.
• Technical data: IP address, user agent, and API key hashes for rate limiting and security

How We Use Your Data

• Providing and operating the WebPeel service
• Tracking usage against your plan limits
• Preventing abuse and enforcing rate limits
• Improving our service and fixing bugs
• Sending account-related communications (no marketing emails)

Data Retention

• Usage logs: Retained for 90 days, then aggregated/deleted
• Account data: Kept until you delete your account
• API keys: Key hashes stored while active; deleted with account

Data Sharing

We do not sell your data. We share data only with:

• Stripe — for payment processing
• Neon — our database provider (PostgreSQL hosting)
• Render — our API hosting provider
• Vercel — our website hosting provider

Your Rights

• Access: View your data via the dashboard API
• Delete: Delete your account via Settings → Delete Account
• Export: Request a data export by contacting us
• Correct: Update your profile in Settings

Security

We use industry-standard security practices: TLS encryption in transit, hashed API keys, parameterized SQL queries, and SSRF protection. Our code is open source for transparency.

Cookies

We use essential session cookies for authentication. No tracking cookies or third-party analytics.

Contact

Questions about this policy? Email privacy@webpeel.dev