We're committed to protecting your privacy and being transparent about how we handle your data.
Last updated: January 15, 2024
GDPR Compliant
TL;DR: We collect minimal data to provide our services, never sell your information, and give you full control over your data. You can delete your account and data at any time.
Data Minimization
We only collect data that's necessary to provide our services
Your Control
You have full control over your data and can delete it anytime
Security First
Enterprise-grade security protects your information
1. Information We Collect
Account Information
When you create an account, we collect:
Name and email address (required for account creation)
Profile information you choose to provide
Billing information for one-time credit purchases (processed securely by Razorpay)
Usage Data
To improve our services, we collect:
How you interact with our tools and features
Pages visited and time spent on our platform
Device and browser information
IP address and general location (country/region)
Content Data
When you use our tools, we may temporarily process:
URLs you submit for accessibility testing
Images you upload for alt text generation
Color codes you test for contrast compliance
Reports and results you generate
2. How We Use Your Information
Service Delivery
• Provide accessibility testing tools
• Generate reports and analytics
• Process one-time payments and maintain billing records
• Provide customer support
Improvement & Security
• Improve our tools and features
• Detect and prevent fraud
• Monitor system performance
• Ensure platform security
3. Data Sharing and Third Parties
We never sell your personal data. We only share data with trusted partners who help us provide our services.
Service Providers
We work with carefully selected partners:
Clerk: Authentication and user management
Razorpay: Payment processing (PCI DSS compliant)
Vercel: Hosting and infrastructure
OpenAI: AI-powered features (images processed securely)
We may disclose information when required by law or to:
Comply with legal processes or government requests
Protect our rights, property, or safety
Prevent fraud or security threats
4. Data Security
Technical Measures
• End-to-end encryption in transit (TLS 1.3)
• Encryption at rest for sensitive data
• Regular security audits and monitoring
• Secure cloud infrastructure (SOC 2 compliant)
Organizational Measures
• Limited access on need-to-know basis
• Regular employee security training
• Incident response procedures
• Data retention policies
5. Your Rights and Choices
Under GDPR, CCPA, and other privacy laws, you have the right to:
Access & Portability
Request a copy of your personal data in a portable format
Correction
Update or correct inaccurate personal information
Deletion
Request deletion of your account and personal data
Objection
Object to certain types of data processing
You can exercise most of these rights directly from your account settings. For other requests, contact us at privacy@accessibility.build.
6. Cookies and Tracking
We use cookies and similar technologies to:
Keep you logged in to your account
Remember your preferences and settings
Analyze how our platform is used
Provide personalized experiences
You can control cookies through your browser settings. Note that disabling certain cookies may affect platform functionality.
7. International Data Transfers
Our services are hosted in the United States. If you're accessing our platform from outside the US, your data may be transferred to and processed in the US. We ensure appropriate safeguards are in place for international transfers, including:
Standard Contractual Clauses (SCCs) with service providers
Adequacy decisions where applicable
Additional security measures for sensitive data
8. Data Retention
We retain your data only as long as necessary:
Account data: Until you delete your account
Usage data: Up to 2 years for analytics
Billing data: 7 years for tax and legal requirements
Support communications: 3 years
When you delete your account, we remove your personal data within 30 days, except where retention is required by law.
9. Children's Privacy
Our services are not intended for children under 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected such information, we will delete it promptly.
10. Changes to This Policy
We may update this privacy policy to reflect changes in our practices or legal requirements. We'll notify you of significant changes by:
Email notification to registered users
Prominent notice on our website
In-app notifications
11. Contact Us
Privacy Questions
For privacy-related questions or to exercise your rights: