Last Updated: November 7, 2025

Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your personal information.

Introduction

Scamflare ("we," "us," or "our") operates the website at scamflare.com and provides website security analysis services. We are committed to protecting your privacy and ensuring the security of your personal information.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services, including our website, browser extension, and API.

Information We Collect

Information You Provide

  • Account Information: When you create an account, we collect your email address, name, and password.
  • Payment Information: For paid subscriptions, we collect billing information through secure third-party payment processors.
  • Communications: When you contact us, we collect the information you provide in your messages.

Information Collected Automatically

  • Usage Data: URLs you scan, scan results, timestamps, and service usage patterns.
  • Device Information: IP address, browser type, operating system, and device identifiers.
  • Cookies: We use cookies and similar technologies to enhance your experience. See our Cookie Policy for details.

Browser Extension Data

Important: Our browser extension DOES NOT track your browsing history. We only analyze URLs when you visit them and do not store any personal browsing data.

How We Use Your Information

We use the information we collect to:

  • Provide and improve our security analysis services
  • Detect and prevent online threats and fraudulent activities
  • Maintain and improve our threat intelligence database
  • Communicate with you about our services, updates, and security alerts
  • Process payments and manage your subscription
  • Analyze usage patterns to enhance user experience
  • Comply with legal obligations and enforce our terms

Data Sharing and Disclosure

We do not sell your personal information. We may share your information with:

  • Service Providers: Third-party vendors who help us operate our services (e.g., hosting, payment processing).
  • Legal Requirements: When required by law or to protect our rights and users' safety.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets.
  • With Your Consent: When you explicitly authorize us to share your information.

Data Security

We implement industry-standard security measures to protect your information:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms
  • Secure data centers with physical security measures
  • Employee training on data protection and security practices

Your Privacy Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal information
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your personal information
  • Data Portability: Receive your data in a portable format
  • Opt-Out: Unsubscribe from marketing communications
  • Object: Object to processing of your information

To exercise these rights, contact us at [email protected]

Data Retention

We retain your personal information for as long as necessary to provide our services and comply with legal obligations. Scan data is typically retained for threat intelligence purposes but is anonymized after 90 days.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information in compliance with applicable data protection laws, including GDPR.

Children's Privacy

Our services are not directed to children under 13 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

Third-Party Services

We use trusted third-party services to operate our platform:

  • Payment Processors: Stripe and PayPal for secure payment processing
  • Cloud Hosting: AWS and Google Cloud for infrastructure
  • Analytics: Google Analytics for usage statistics (anonymized)
  • Email Services: SendGrid for transactional emails
  • AI Services: Google Gemini API for threat analysis

These services have their own privacy policies and we encourage you to review them. We only share the minimum necessary information with these providers.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience:

Essential Cookies

Required for basic site functionality, including authentication, security, and preferences. These cannot be disabled.

Analytics Cookies

Help us understand how visitors use our site. Data is anonymized and aggregated. You can opt-out via your browser settings.

Preference Cookies

Remember your settings and preferences for a better experience.

You can control cookies through your browser settings. Note that disabling cookies may affect site functionality. See our Cookie Policy for details.

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Request disclosure of personal information collected, used, or shared
  • Right to Delete: Request deletion of your personal information
  • Right to Opt-Out: Opt-out of the sale of personal information (we do not sell personal information)
  • Right to Non-Discrimination: Equal service regardless of exercising your privacy rights

To exercise these rights, contact us at [email protected] with "CCPA Request" in the subject line.

GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

  • Legal Basis: We process your data based on consent, contract performance, legal obligations, and legitimate interests
  • Data Transfers: We use Standard Contractual Clauses for international data transfers
  • Right to Lodge Complaint: You may file a complaint with your local data protection authority
  • Automated Decision-Making: Our FlareScore uses automated analysis, but you can request human review

Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will notify you within 72 hours via email and provide details about the breach, affected data, and steps we're taking to address it. We will also notify relevant authorities as required by law.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

  • Posting the updated policy on this page with a new "Last Updated" date
  • Sending an email notification to registered users
  • Displaying a prominent notice on our website

Your continued use of our services after changes become effective constitutes acceptance of the updated policy. We encourage you to review this policy periodically.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

We aim to respond to all privacy inquiries within 30 days. For urgent matters, please mark your email as "Urgent Privacy Request."

Related Policies

Terms of Service

Read our terms and conditions

Cookie Policy

Learn about our cookie usage

Security Policy

Our security practices