Privacy Policy

Last updated: May 26, 2026

1. What We Collect

When you sign in with LinkedIn, we access your public profile information (name, headline, profile picture, email) through LinkedIn's official OpenID Connect API. We never scrape or access data without your explicit authorization.

Our browser extension reads your own profile pages on LinkedIn and GitHub as you see them — within your logged-in session. This data never leaves your browser until you explicitly click "Scan."

2. What We Store

• Account data: Name, email, LinkedIn profile ID, plan tier, JWT authentication tokens.
• Scan data: Fields detected as public on your profiles, risk flags, privacy settings status.
• Breach data: Results from Have I Been Pwned (breach names, exposed data categories, dates).
• Opt-out status: Broker names, submission status, timestamps — never the content of removal requests.

We store LinkedIn OAuth access tokens encrypted at rest (AES-128 Fernet). Payment information is handled entirely by Stripe — we never see or store your credit card.

3. How We Use Your Data

• To show you your exposure score and risk flags
• To check your email against known data breaches (via HIBP API)
• To submit opt-out requests to data brokers on your behalf (DELIST/CONCIERGE plans)
• To send monthly perimeter reports and breach alerts (if subscribed)

4. Data Sharing

We share your data only when necessary to provide the service:

• Have I Been Pwned: Your email address (hashed via k-anonymity where possible) to check breach status
• Stripe: Email and subscription metadata for payment processing
• Mailgun: Email address for report delivery
• Data brokers: Name and email for opt-out requests (DELIST/CONCIERGE plans)

We never sell, rent, or trade your data. We never share scan results with third parties.

5. Your Rights (GDPR / CCPA)

• Access: Export all your data in machine-readable JSON via GET /auth/account/export
• Deletion: Permanently delete your account and all data via DELETE /auth/account
• Correction: Contact us to update inaccurate data
• Portability: Your export includes all scans, breaches, and opt-out records
• Objection: You can object to processing by deleting your account at any time

6. Data Retention

We retain your data for as long as your account is active. Upon deletion, all records are permanently removed within 30 days. Backups are rotated every 7 days.

7. Security

• All API communication is encrypted via HTTPS (TLS 1.3)
• LinkedIn OAuth tokens are encrypted at rest with Fernet (AES-128)
• JWT tokens use HS256 signing with a unique secret key
• Rate limiting protects against brute force and abuse
• Database access is restricted to the application server

8. Contact

For privacy requests, questions, or to exercise your rights:
Email: privacy@digitalperimeter.io