Privacy Policy

When you use DidIShipThis, we collect:

• Your email address — to deliver scan results and for account communication
• The URL you submit — to run the scan against
• Scan findings — the output of the security checks we run
• Payment information — handled entirely by Stripe; we never see or store your card details
• IP address — for rate limiting and abuse prevention, not linked to your identity

• To run the scan and deliver results to your email
• To process payment via Stripe
• To send occasional product updates (you can unsubscribe at any time — just reply to any email)
• To detect and prevent abuse of our scanning infrastructure

We do not sell your data. We do not use your email for advertising. We do not share your scan results with any third party.

We use the following sub-processors to deliver the Service:

• Stripe — payment processing. Stripe Privacy Policy
• Resend — transactional email delivery. Resend Privacy Policy
• Render — cloud hosting and compute. Render Privacy Policy
• Cloudflare — DDoS protection and CDN. Traffic passes through Cloudflare's network. Cloudflare Privacy Policy

Scan records — including the URL, findings, and your email — are retained for 90 days from the date of the scan, then permanently deleted. Payment records are retained by Stripe in accordance with their policy and applicable financial regulations.

You can request deletion of your data at any time by emailing hello@didishipthis.com with the subject “Delete my data”. We will delete all records associated with your email address within 7 days.

If you are in the EU or UK, you have additional rights under GDPR including the right to access, rectify, and port your data. Contact us at the address above to exercise these rights.

We use a single session cookie for admin authentication. We do not use tracking cookies, analytics cookies, or third-party advertising cookies.

Scan results are stored in an encrypted PostgreSQL database. Connections are encrypted in transit via TLS. We apply the same security standards we scan for in others.

We will post any changes to this page and update the “last updated” date. If the changes are material, we will notify you by email.

Questions about privacy? hello@didishipthis.com