Privacy Policy

SiteGauge ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website monitoring and competitor intelligence platform (the "Service").

By accessing or using the Service, you agree to the terms of this Privacy Policy. If you do not agree, please discontinue use of the Service.

Information you provide directly

• Account data - name, email address, and password (or OAuth credentials via Google/GitHub) when you register.

• Payment data - billing address and payment method details. Card numbers are processed directly by Stripe and never stored on our servers.

• Team data - names and email addresses of team members you invite.

• Communications - messages you send us via email or support channels.

Information collected automatically

• Usage data - pages visited, features used, actions taken within the dashboard, frequency and duration of use.

• Device and log data - IP address, browser type, operating system, referring URLs, and timestamps.

• Cookies and similar technologies - session cookies (required for authentication), analytics cookies (optional, controlled by your browser settings), and preference cookies.

Data collected on your behalf

When you add a URL to monitor, our crawlers fetch and store snapshots of those pages. This content belongs to the respective third-party websites. We store rendered HTML, screenshots, and extracted text solely to power the change-detection and alerting features of the Service.

We use the information we collect to:

• Provide and operate the Service - crawl monitored URLs, detect changes, generate AI summaries, and deliver alerts.
• Process payments - manage subscriptions, issue invoices, and handle billing events.
• Send transactional communications - account verification, alert notifications, digest emails, and team invitations.
• Improve the Service - analyse usage patterns, debug issues, and develop new features.
• Ensure security - detect fraud, abuse, and unauthorised access.
• Comply with legal obligations - respond to lawful requests from public authorities.

We do not sell your personal data to third parties. We do not use your data to train AI models.

We share your information only in these limited circumstances:

• Service providers - we engage trusted third parties to operate the Service: Clerk (authentication), Stripe (payments), Resend (email delivery), Cloudflare R2 (screenshot storage), Neon (database), Anthropic (AI analysis). Each provider processes data only as instructed and under appropriate data processing agreements.
• Team members - if you invite someone to your workspace, they can see monitors, changes, and alerts within your organisation.
• Legal requirements - we may disclose information if required by law, court order, or to protect the rights, property, or safety of SiteGauge, our users, or the public.
• Business transfers - in the event of a merger, acquisition, or sale of assets, your data may be transferred. We will provide notice before any such transfer.

We retain your account data for as long as your account is active or as needed to provide the Service. You may delete your account at any time via Settings → Danger Zone, which removes your personal data within 30 days.

Crawl snapshots and change history are retained according to your plan limits. Snapshots beyond your plan's retention window are automatically deleted. Aggregated, anonymised analytics data may be retained indefinitely.

We implement industry-standard security measures including encryption in transit (TLS 1.2+), encryption at rest, access controls, and regular security reviews. API keys are stored as one-way hashes.

No method of transmission over the internet is 100% secure. We cannot guarantee absolute security, but we will notify you of any breach affecting your personal data as required by applicable law.

Depending on your jurisdiction, you may have the right to:

• Access - request a copy of the personal data we hold about you.
• Correction - request correction of inaccurate or incomplete data.
• Deletion - request deletion of your personal data ("right to be forgotten").
• Portability - request your data in a structured, machine-readable format.
• Objection - object to certain types of processing, including direct marketing.
• Restriction - request that we restrict processing of your data in certain circumstances.

To exercise any of these rights, email us at privacy@sitegauge.com. We will respond within 30 days.

We use the following cookies:

• Strictly necessary - session tokens required for authentication. Cannot be disabled.
• Functional - theme preference (light/dark mode). Stored in localStorage.
• Analytics - aggregate usage statistics to improve the product. You can opt out via your browser settings or a global opt-out.

We do not use advertising or cross-site tracking cookies.

SiteGauge is operated from the United Kingdom. If you access the Service from outside the UK or EEA, your information may be transferred to and processed in countries with different data protection laws. Where we transfer data internationally, we rely on standard contractual clauses approved by relevant data protection authorities.

The Service is not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us at privacy@sitegauge.com and we will delete it promptly.

We may update this Privacy Policy from time to time. We will notify you of material changes by email and/or by posting a notice in the dashboard at least 14 days before they take effect. Continued use of the Service after changes take effect constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy or our data practices, please contact:

SiteGauge
privacy@sitegauge.com

For users in the UK/EEA, you also have the right to lodge a complaint with your local data protection authority.