Skip to main content

Privacy Policy

Last Updated: January 27, 2026


1. Introduction

SECrawl is a product of Agent Score Ltd ("we," "us," or "our"). We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web crawling and SEO analysis service.

By using SECrawl, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, password (encrypted), name (optional)
  • Billing Information: Processed securely by our payment processor (Paddle). We do not store credit card numbers.
  • Profile Information: Any additional details you choose to provide in your account settings
  • Support Communications: Messages, emails, or other communications with our support team

2.2 Information Collected Automatically

  • Crawl Data: URLs, page content, metadata, and SEO metrics from websites you crawl
  • Usage Data: Features used, crawls created, reports viewed, API calls made
  • Technical Data: IP address, browser type, device information, operating system
  • Cookies: Session authentication token stored in browser localStorage (see Cookie Policy)

2.3 Information from Third-Party Services

If you connect third-party services to your account:

  • Google Analytics 4: Traffic data, user behavior, conversion metrics (with your authorization)
  • Google Search Console: Search performance data, impressions, clicks, positions (with your authorization)
  • OAuth Credentials: Access tokens for connected services (stored encrypted)

3. How We Use Your Information

We use collected information for the following purposes:

  • Provide Services: Process crawls, generate reports, provide analysis and recommendations
  • Account Management: Create and manage your account, process payments, send transactional emails
  • Service Improvement: Analyze usage patterns, develop new features, improve performance
  • Security: Detect fraud, prevent abuse, protect our systems
  • Legal Compliance: Comply with laws, regulations, and legal processes
  • Communications: Send service updates, security alerts, and support messages

4. Data Processing and AI Features

SECrawl uses AI and machine learning to provide enhanced analysis:

  • Content Analysis: Page content is processed to generate semantic embeddings (384-dimensional vectors) for similarity analysis
  • AI Recommendations: Content and technical data may be processed by AI models (OpenAI, Anthropic) to generate insights
  • Data Privacy: AI processing occurs on-demand and does not train models on your data
  • Opt-Out: AI features are available only on Starter+ plans; Free tier users do not have AI processing

5. Data Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

5.1 Service Providers

  • Payment Processing: Paddle (payment processor)
  • Email Delivery: Mailgun (transactional emails)
  • Cloud Infrastructure: AWS, DigitalOcean, or similar (hosting)
  • AI Processing: OpenAI, Anthropic (AI analysis features)

5.2 Legal Requirements

We may disclose information if required by law, court order, or government request, or to protect our rights and safety.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

6. Data Retention

We retain your information as follows:

  • Account Data: Retained while your account is active and for 30 days after deletion (for recovery purposes)
  • Crawl Data: Retained according to your subscription plan (90 days Starter, 1 year Professional, indefinite Enterprise)
  • Billing Records: Retained for 7 years for tax and accounting purposes
  • Support Communications: Retained for 2 years

7. Your Privacy Rights

7.1 GDPR Rights (EU Users)

If you are in the European Economic Area, you have the following rights:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Data Portability: Receive your data in a machine-readable format
  • Restriction: Limit how we process your data
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent for data processing at any time

7.2 CCPA Rights (California Users)

California residents have the right to:

  • Know what personal information is collected, used, shared, or sold
  • Delete personal information (with exceptions)
  • Opt-out of sale of personal information (we do not sell data)
  • Non-discrimination for exercising privacy rights

7.3 How to Exercise Rights

To exercise your privacy rights:

  • Self-Service: Use the "Export My Data" or "Delete My Account" options in Settings
  • Email: Contact [email protected] with your request
  • Response Time: We will respond within 30 days
  • Verification: We may verify your identity before fulfilling requests

8. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: Data encrypted in transit (HTTPS/TLS) and at rest
  • Authentication: Secure JWT-based authentication with encrypted tokens
  • Password Storage: Passwords hashed using Argon2 (never stored in plain text)
  • Access Controls: Role-based access control, minimum necessary access principle
  • Monitoring: Continuous security monitoring and incident response

However, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers as required by applicable law (e.g., EU Standard Contractual Clauses).

10. Children's Privacy

Our Service is not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these websites. Please review their privacy policies before providing any information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service. The "Last Updated" date at the top indicates when the policy was last revised. Your continued use after changes constitutes acceptance of the updated policy.

13. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal data:

EU Representative

If you are in the EU and have concerns about our data practices, you may also contact your local data protection authority.

Cookie Consent

We use essential cookies to keep you logged in and functional cookies to remember your preferences. With your consent, we also use Google Analytics to understand how the site is used. Learn more