🔍 Leak Detector
LoginGet Started Free

Privacy Policy

Last updated: February 1, 2026

1. Introduction

Leak Detector ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our landing page analysis service. We are committed to GDPR compliance and respect your data protection rights.

2. Data We Collect

We collect the following types of information:

Account Information

  • Email address (required for account creation)
  • Full name (optional)
  • Password (stored securely using industry-standard hashing)

Analysis Data

  • URLs of pages you submit for analysis
  • Page content captured during analysis (HTML, text, screenshots)
  • Generated reports and recommendations

Payment Information

  • Billing details are processed by Stripe
  • We do not store credit card numbers on our servers
  • We retain Stripe customer IDs for subscription management

Usage Data

  • Log data (IP address, browser type, pages visited)
  • Feature usage statistics
  • Error reports for service improvement

3. How We Use Your Data

We use the collected information to:

  • Provide and maintain the Service, including processing your analyses
  • Process payments and manage subscriptions
  • Send important service-related communications
  • Improve our AI analysis capabilities and user experience
  • Respond to your support requests and inquiries
  • Detect and prevent fraudulent or abusive usage

4. Legal Basis (GDPR)

Under GDPR, we process your data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide the Service you requested
  • Legitimate Interest: Improving our service, fraud prevention, and security
  • Legal Obligation: Compliance with applicable laws and regulations
  • Consent: When you explicitly opt-in (e.g., marketing communications)

5. Third-Party Services

We use the following third-party services to operate Leak Detector:

  • Supabase — Database and authentication (EU data region)
  • Stripe — Payment processing (PCI-DSS compliant)
  • Anthropic — AI analysis (page content is sent for analysis)
  • Vercel — Frontend hosting
  • Railway — Backend hosting
  • Sentry — Error monitoring and performance tracking

Each provider has their own privacy policy and data processing agreements. We ensure all providers meet GDPR requirements where applicable.

6. Data Retention

We retain your data as follows:

  • Account data: Retained while your account is active
  • Analysis reports: Retained for the duration of your subscription (unlimited for paid plans, 7 days for free)
  • Deleted accounts: Data is permanently deleted within 30 days of account deletion
  • Logs and analytics: Retained for up to 90 days

7. Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Portability: Request your data in a machine-readable format
  • Right to Restriction: Request limitation of processing in certain circumstances
  • Right to Object: Object to processing based on legitimate interests

To exercise these rights, contact us at support@leakdetector.tech. We will respond within 30 days.

8. Cookies

We use only essential cookies necessary for the Service to function properly. These include authentication session cookies managed by Supabase. We do not use tracking cookies, advertising cookies, or third-party analytics cookies. Your browser settings allow you to control cookie preferences, but disabling essential cookies may affect Service functionality.

9. Data Security

We implement industry-standard security measures to protect your data:

  • All data transmitted via HTTPS/TLS encryption
  • Data encrypted at rest using AES-256 (Supabase)
  • Passwords hashed using bcrypt with secure salting
  • Regular security audits and vulnerability assessments
  • Access controls and principle of least privilege

10. Changes to This Policy

We may update this Privacy Policy from time to time. For material changes, we will notify you via email at least 30 days before they take effect. The "Last updated" date at the top of this page indicates when the policy was last revised. We encourage you to review this policy periodically.

11. Contact

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us:

If you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection authority.

← Back to home