← Back to Home

Privacy Policy

Last updated: March 26, 2026

1. Overview

PrufAgent ("we", "us", "our") is committed to protecting your privacy. This policy explains how we collect, use, and safeguard information when you use our OSINT intelligence platform at prufagent.com.

2. What We Collect

• Account data: Email address and hashed password (if you create an account).
• Scan queries: The names, emails, phone numbers, or usernames you submit for scanning.
• Usage data: IP address, browser type, scan count, and timestamps for rate limiting and abuse prevention.
• Payment data: Processed by Lemon Squeezy. We never store credit card numbers.

3. How We Use Your Data

We use your data solely to:

• Perform OSINT scans and return results
• Enforce free scan limits and billing
• Prevent abuse and maintain platform security
• Improve our scanning engines and accuracy

We never sell your data. We never share scan queries with third parties.

4. Data Retention & Deletion

• Scan queries: Automatically deleted within 24 hours of the scan.
• Scan results: Stored encrypted for the duration of your plan (24h for Basic, 7 days for Deep, 30 days for Extreme), then permanently deleted.
• Account data: Retained until you delete your account.
• Guest scans: No account required. Scan data is ephemeral and auto-deleted.

5. Anonymous Scanning

All scans are 100% anonymous. We do not notify the person being searched. We do not leave traces on the platforms we scan. Your identity is never exposed.

6. GDPR Compliance

For users in the EU/EEA:

• You have the right to access, correct, or delete your personal data.
• You can request a portable copy of your data.
• You can object to processing or request restriction.
• Contact us at privacy@prufagent.com for any GDPR requests.

7. Security

• All data is encrypted in transit (TLS 1.3) and at rest (AES-256).
• Passwords are hashed with bcrypt. We never see your plaintext password.
• We conduct regular security audits and penetration testing.
• Infrastructure is hosted on hardened VPS with firewall and intrusion detection.

8. Cookies

We use minimal cookies:

• Session token: For authenticated users (httpOnly, secure, sameSite).
• Scan counter: LocalStorage only (no server-side tracking).

We do not use analytics cookies, advertising trackers, or third-party pixels.

9. Third Parties

We use the following services:

• Lemon Squeezy: Payment processing (PCI DSS compliant)
• Let's Encrypt: SSL certificates

No other third parties receive your data.

10. Children

PrufAgent is not intended for users under 18. We do not knowingly collect data from minors.

11. Changes

We may update this policy. Material changes will be announced on the platform. Continued use constitutes acceptance.

12. Contact

Questions? Email privacy@prufagent.com or write to us at our registered address.