PolicyDiff LogoPolicyDiffBeta

Privacy Policy

Last Updated: March 1, 2026

1. Overview

At PolicyDiff ("we", "us", "our"), we respect your privacy and are committed to protecting it. This Privacy Policy explains how we collect, use, and safeguard your information when you use our API and website.

2. Information We Collect

Our Service is designed to minimize personal data collection. We primarily collect technical data required to operate the monitoring service:

  • Account Credentials: Your email address and API keys. API keys are immediately hashed using SHA-256 upon creation; we do not store raw keys.
  • Monitored URLs: The public web addresses (URLs) you submit for monitoring. We treat these as public data.
  • Content Snapshots: The HTML content retrieved from the monitored URLs. We store versioned snapshots of this public content to generate diffs.
  • Usage Logs: Metadata about your API usage, including timestamp, request count, and error rates, for rate limiting and billing purposes.

3. How We Use Your Information

We use the collected information solely for the following purposes:

  • To provide, maintain, and improve the Service.
  • To process transactions and enforce billing/quota limits.
  • To communicate with you about service updates, security alerts, and support.
  • To detect and prevent abuse, fraud, or security incidents.

We do not sell your personal data to third parties. We do not use the content of your monitored pages to train generative AI models.

4. Data Retention

We retain your account information for as long as your account is active. Snapshots of monitored pages are retained according to your plan's history limits (e.g., 90 days for Pro). You may request the deletion of your account and all associated data at any time by contacting support.

5. Security

We implement industry-standard security measures to protect your data, including:

  • Encryption of data in transit (TLS/SSL) and at rest.
  • SHA-256 hashing for all API credentials.
  • Strict access controls for our internal infrastructure.

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

6. Third-Party Services

We may use third-party vendors (e.g., cloud hosting providers, payment processors) to operate the Service. These vendors have access to your data only to perform specific tasks on our behalf and are obligated to protect it.

7. Contact Us

If you have any questions about this Privacy Policy, please contact us at:
privacy@policydiff.org