Legal Document

Privacy Policy

Last updated: December 20, 2025

At ScrapeBadger ("we", "us", or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web scraping API services and related platform.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Email address
  • Name (if provided)
  • Company name (if applicable)
  • Password (stored securely using industry-standard encryption)
  • OAuth provider information (if using social login)

1.2 API Usage Data

When you use our APIs, we automatically collect:

  • API request timestamps and endpoints accessed
  • IP addresses from which requests originate
  • Request parameters (excluding scraped content)
  • Response times and status codes
  • Credit consumption and billing data
  • Rate limit metrics

1.3 Scraped Data

Important: ScrapeBadger acts as a data processor, not a data controller, for the content you scrape. We do not store, analyze, or retain the actual data returned by our scraping APIs. Scraped data is transmitted directly to you and is not logged or persisted on our systems beyond the immediate request lifecycle.

1.4 Payment Information

Payment processing is handled by third-party providers (such as Stripe). We do not store complete credit card numbers. We may receive:

  • Last four digits of payment cards
  • Billing address
  • Transaction history

2. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve our API services
  • Process transactions and manage your account
  • Monitor API usage and enforce rate limits
  • Detect and prevent fraud, abuse, and security incidents
  • Send service-related communications (API updates, security alerts)
  • Provide customer support
  • Comply with legal obligations
  • Generate anonymized, aggregated analytics to improve our services

3. Data Sharing and Disclosure

We may share your information with:

3.1 Service Providers

Third-party companies that help us operate our business, including:

  • Cloud infrastructure providers (hosting, databases)
  • Payment processors
  • Analytics services
  • Customer support tools

3.2 Legal Requirements

We may disclose information when required by law, subpoena, or other legal process, or when we believe disclosure is necessary to:

  • Comply with applicable laws or regulations
  • Protect our rights, property, or safety
  • Investigate fraud or security concerns
  • Respond to government requests

4. Data Security

We implement industry-standard security measures to protect your data:

  • TLS/SSL encryption for all data in transit
  • AES-256 encryption for sensitive data at rest
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms
  • Secure API key management
  • DDoS protection and rate limiting
  • Regular backups with encrypted storage

5. Data Retention

We retain your information as follows:

  • Account data: Retained while your account is active and for 30 days after deletion request
  • API usage logs: Retained for 90 days for operational purposes
  • Billing records: Retained for 7 years as required by tax laws
  • Scraped content: Not retained (transmitted directly to you)

6. Your Rights and Choices

Depending on your location, you may have the following rights:

6.1 GDPR Rights (EU/EEA Residents)

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate personal data
  • Erasure: Request deletion of your personal data
  • Portability: Receive your data in a structured, machine-readable format
  • Restriction: Request limitation of processing
  • Objection: Object to processing based on legitimate interests

6.2 CCPA Rights (California Residents)

  • Know: Request disclosure of personal information collected
  • Delete: Request deletion of personal information
  • Opt-out: Opt out of the sale of personal information (we do not sell personal information)
  • Non-discrimination: Exercise rights without discriminatory treatment

To exercise these rights, contact us at privacy@scrapebadger.com

7. International Data Transfers

Our services are hosted in the United States. If you access our services from outside the US, your information may be transferred to, stored, and processed in the US or other countries. We use Standard Contractual Clauses and other appropriate safeguards to ensure adequate protection for international transfers.

8. Third-Party Links

Our services may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

9. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal information, we will take steps to delete such information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we may also send you an email notification.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

ScrapeBadger Privacy Team

Email: privacy@scrapebadger.com

For data subject requests, please use the subject line "Privacy Request"