← home

Privacy

Plain and specific: what we store, and what we never do.

The free scan

We load your public URL the way a browser would and analyse what it returns. We log only the URL you scanned, the readiness score, finding counts, and the platform we detected. We do not store page contents, and we never store raw secret values — secret findings are redacted to a short fingerprint.

If you give us your email

When you request a Fix Pack, Launch Proof review, or monitoring waitlist we store the email, URL, and intake details you submit (and, for abuse-prevention, the request IP) so we can deliver or follow up on what you asked for. Payments are handled by Stripe where configured; on purchase we store the Stripe session id + email. Paid monitoring is offered only when alert delivery is configured; active monitoring stores the URL + email + last result so we can re-scan and alert you.

Active (owner-verified) checks

Database checks run only after you prove you own the app, and they read minimally — a row count for Supabase, one record for Firebase — never your users' data, which is never stored.

Badges

A public /verify report shows only a pass/fail summary, finding counts, and the date — never secret values, table names, or row counts.

Logs & deletion

Operational event files are pruned on write to about 90 days by default, and capped so they cannot grow without bound. Host/provider logs may have their own retention. Email support@shipshape.app to have your email, monitor entry, badge record, and related event rows removed.

This describes current behaviour and may change as the product evolves.