Privacy Policy

This Privacy Policy applies to privaraprivacy.comand the Privara service (the "Service"), operated by Privara. By using the Service, you agree to the collection and use of information in accordance with this policy.

We are a privacy and data-removal service. Our entire business model depends on us being trustworthy with your information. We treat that obligation seriously.

Privara is a privacy SaaS company headquartered in California, USA. For privacy-related questions, requests, and complaints, contact info@privaraprivacy.com. We are the "data controller" (under GDPR terminology) for information you provide to us directly.

We collect three categories of information.

(a) Information you give us directly. When you sign up for the Service, you provide us with information needed to identify you in data broker databases and to remove you from them. This includes:

• Names you go by, including past names and aliases
• Current and past home addresses
• Personal phone numbers and email addresses
• Date of birth (often year only)
• Names of family members (only those you explicitly add)
• Profession-specific identifiers (e.g., DRE license number for California real estate agents)
• Account credentials (email and authentication tokens)
• Billing information (handled by Stripe; see below)

(b) Information we generate during scans and removals. When we scan data broker sites on your behalf, we record where your information appeared, what was exposed, and the status of each removal request. We store screenshots of broker pages as evidence of removal.

(c) Information collected automatically. When you use the Service, we automatically collect basic technical information: IP address, browser type, device type, and pages visited. We use this to operate the Service and detect abuse.

We use the information we collect to:

• Run scans and removals. Submit your information to data broker opt-out forms, breach databases, and search engine takedown processes on your behalf.
• Show you what we did. Display real-time status, screenshots, and history in your dashboard so you can verify our work.
• Re-scan you periodically. Detect when a broker re-lists you and resubmit removal requests.
• Communicate with you. Send transactional email (account confirmations, scan results, billing receipts) and occasional product updates.
• Operate the business. Process payments, prevent fraud, debug issues, and improve the Service.
• Comply with the law. Respond to lawful requests from courts, regulators, and law enforcement when required.

We do notsell your personal information. We do not use your data for advertising. We do not share it with marketing partners. We are not in the data-broker business — we're in the getting-you-off-it business.

To do the work you're paying us to do, we have to share certain information with specific parties. We share only what is necessary, only with these parties, and only for these purposes:

• Data brokers (necessarily).When we submit an opt-out request on your behalf, we send the broker the minimum information needed for them to identify you in their database (e.g., name and address). This is a feature of the service, not a privacy risk we're hiding — there's no way to remove you from a broker without telling them who you are.
• Infrastructure providers. We host the Service on Vercel (USA), our database is on Supabase (USA), and we use Resend (USA) for transactional email. These providers operate under data processing agreements that bind them to handle your data only on our instructions.
• Stripe for payment processing. Stripe holds your billing information; we never see your full card number.
• Law enforcement, but only when legally compelled and only to the extent required.

We will never sell your information, share it with advertisers, allow it to be used for any purpose besides the Service, or hand it to a buyer if Privara is acquired without first notifying you and giving you a chance to delete your account.

We retain your personal information for as long as your account is active, plus a short additional period (typically 90 days) so you can recover the account if you cancel by mistake.

When you permanently delete your account, we delete your personal information within 30 days, except for limited records we're required to keep for legal, tax, or accounting purposes (e.g., billing records).

Screenshots of removed broker pages are retained as long as your account is active so you have permanent evidence of removal.

Depending on where you live, you have rights over your personal information. We honor these rights for everyone, regardless of jurisdiction:

• Access. Get a copy of the personal information we hold about you.
• Correction.Update any information that's inaccurate.
• Deletion. Permanently delete your account and the personal information associated with it.
• Portability. Export your data in a machine-readable format.
• Objection. Stop us from processing your data, with the consequence that we cannot provide the Service.

To exercise any of these rights, email info@privaraprivacy.com. We will respond within 30 days.

California residents have additional rights under the California Consumer Privacy Act (CCPA/CPRA). EU and UK residents have rights under the GDPR. The rights above already cover the substance of those laws.

We use industry-standard security practices to protect your data: encryption in transit (TLS) and at rest, Postgres-level access controls, scoped service tokens, and minimal data exposure to third-party providers.

No system is perfectly secure, and we won't pretend otherwise. If we ever discover a breach affecting your information, we will notify you promptly with details about what happened and what we're doing about it.

We use a small number of essential cookies and similar technologies to keep you signed in and to keep the Service working. We do not use advertising cookies, behavioral tracking pixels, or third-party analytics that build profiles of you across the web.

We may use a privacy-respecting analytics tool (such as Plausible or Vercel Analytics) to count page views in aggregate. These tools do not set cookies and do not collect personally identifiable information.

Privara is not directed at children. We do not knowingly collect personal information from anyone under the age of 16. If we learn we've collected information from a child, we will delete it promptly.

Privara is operated from the United States. If you use the Service from outside the US, your information will be transferred to and processed in the US. By using the Service, you consent to that transfer.

We may update this policy from time to time as the Service evolves. When we do, we will update the "Effective" date at the top and, for material changes, notify active users by email. Continued use of the Service after a change means you accept the updated policy.

For privacy questions, requests, or complaints: info@privaraprivacy.com.