Privacy Policy

Last updated: May 16, 2026

Overview

AgentScan is designed to collect the minimum data required to operate scanning, maintain service reliability, and investigate misuse. We do not sell personal data.

URLs you scan

Submitted URLs are used to perform live checks against public endpoints. In the current production flow, scan requests are proxied to the upstream scan provider using the URL you submit. Results are stored in browser session storage for in-session viewing.

Server logs

Standard operational logs may include IP address, request path, timestamps, and response status for service reliability, abuse prevention, and debugging.

Retention

Operational logs are retained only as long as needed for reliability and security operations. We periodically rotate and remove old log data.

Cookies and local storage

We do not use advertising cookies. The web app stores scan results in session storage to show the results page after scanning. This data stays in your browser session.

Third-party processing

Scan execution currently depends on an upstream API provider. Submitted URLs are forwarded to that provider to generate scan results. Review their policies when assessing your own compliance posture.

International users

If you access the service from outside our hosting region, your data may be processed in jurisdictions with different data protection laws.

Your rights

Depending on your jurisdiction, you may have rights related to access, deletion, objection, or portability. For privacy requests, please contact us.

Policy updates

We may update this policy as infrastructure, legal requirements, or product behavior evolves. Material changes are reflected by the updated date above.