ScoutUX ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered usability testing service.
1. Information We Collect
1.1 Information You Provide
- Account Information: When you create an account using Google OAuth, we collect your name, email address, and profile information provided by Google.
- Website Information: URLs and configuration details of websites you submit for usability testing.
- Persona Data: User personas you create for testing scenarios.
- Payment Information: Billing information processed through Stripe (we do not store your payment details directly).
1.2 Information We Collect Automatically
- Usage Data: Information about how you use our service, including interactions, features accessed, and time spent.
- Technical Data: IP address, browser type, device information, and operating system.
- Analytics Data: We use Google Analytics and Hotjar to understand user behavior and improve our service.
- Screenshots and Recordings: Our AI-powered browser interactions capture screenshots and interaction data from the websites you test.
2. How We Use Your Information
- Provide and maintain our usability testing service
- Generate AI-powered usability reports based on Nielsen's heuristics
- Process payments and manage subscriptions through Stripe
- Send service-related communications
- Improve our service through analytics and user feedback
- Ensure security and prevent fraud
- Comply with legal obligations
3. AI and External Services
We use Google's Gemini AI models to analyze your websites and generate usability reports. This processing may involve:
- Sending website screenshots and interaction data to Google's Gemini AI service
- Processing this data to identify usability issues and generate recommendations
- On the free plan, your data may be used by Google to improve their AI models
- On the paid plans, your data is not used to train any AI models
- AI processing is governed by Google's privacy policies and our data processing agreements
4. Data Storage and Security
We implement appropriate technical and organizational security measures:
- Cloud Storage: Screenshots and files are stored securely in third party cloud storage
- Database Security: User data is stored in database services on the cloud
- Access Controls: Multi-tenant architecture ensures data isolation between accounts
- Regular Backups: Data is regularly backed up to prevent loss
5. Data Sharing and Disclosure
We may share your information with:
- Service Providers: Google (OAuth and AI), Stripe (payments), Amazon Web Services (hosting), Hotjar (analytics)
- Legal Requirements: When required by law or to protect our rights
- Business Transfers: In connection with mergers, acquisitions, or asset sales
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
6. Data Retention
We retain your information for as long as necessary to provide our services and comply with legal obligations. You may request deletion of your account and associated data at any time by contacting [email protected]. Note that payment information stored by Stripe may be retained according to their policies and legal requirements.
7. Your Rights
Depending on your location, you may have the following rights:
- Access and portability of your personal data
- Correction of inaccurate data
- Deletion of your data (subject to legal obligations)
- Restriction of processing
- Withdrawal of consent
To exercise these rights, contact us at [email protected].
8. Cookies and Tracking
We use cookies and similar technologies for authentication, preferences, and analytics. Our analytics providers (Google Analytics, Hotjar) may set their own cookies. You can control cookie preferences through your browser settings.
9. International Data Transfers
Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses and adequacy decisions.
10. Children's Privacy
Our service is not intended for children under 16. We do not knowingly collect personal information from children under 16.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email or through our service.
12. Contact Us
If you have questions about this Privacy Policy or our data practices, contact us at: