Privacy Policy

Last Updated: February 1, 2026

SiteRecord ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our compliance management service.

1. Information We Collect

Account Information: When you create an account, we collect your email address and password (stored in hashed form). We may also collect your name and organization name if provided.

Website Data: We collect information about websites you add to our service, including URLs, website names, and any descriptions you provide.

Scan Data: When you run compliance scans, we collect and store the results, including identified accessibility issues, page URLs, and technical details necessary for compliance reporting.

Usage Data: We automatically collect certain information when you access our service, including IP addresses, browser type, operating system, access times, and pages viewed. We use Google Analytics to help analyze this usage data.

Cookies: We use session cookies to maintain your login state and preferences. These are essential for the service to function properly.

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our compliance management service
• Process and complete compliance scans you request
• Generate compliance reports and records
• Send you service-related communications (e.g., password resets, security alerts)
• Respond to your inquiries and provide customer support
• Monitor and analyze usage patterns to improve user experience
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations

3. Data Retention

We retain your account information for as long as your account is active. Compliance scan data and records are retained to support your ongoing compliance documentation needs. You may request deletion of your data at any time by contacting us.

When you delete a website from your account, associated scan data may be archived rather than immediately deleted to maintain compliance record integrity. Archived data is not accessible through the normal interface.

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

• Service Providers: We may share information with third-party vendors who perform services on our behalf (e.g., hosting, analytics). These providers are contractually obligated to protect your information.
• Legal Requirements: We may disclose information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
• Business Transfers: If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5. Data Security

We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit using TLS/SSL
• Secure password hashing using industry-standard algorithms
• Regular security assessments and updates
• Access controls limiting who can view your data

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Your Rights and Choices

You have the right to:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information, subject to legal retention requirements
• Data Portability: Request an export of your compliance data in a machine-readable format
• Opt-Out: Opt out of non-essential communications

To exercise these rights, please contact us using the information provided below.

7. Third-Party Services

Our service may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party services you access.

We use Google Analytics to analyze usage of our service. Google Analytics collects information such as how often users visit the site, what pages they visit, and what other sites they used prior to coming to our site. Google's ability to use and share information collected by Google Analytics is restricted by the Google Analytics Terms of Service and the Google Privacy Policy.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country. We take appropriate safeguards to ensure your information remains protected in accordance with this Privacy Policy.

9. Children's Privacy

Our service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child, we will take steps to delete that information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. Your continued use of the service after any changes indicates your acceptance of the updated Privacy Policy.