Last updated: March 14, 2026

1. Information We Collect

Information You Provide

Account information: Email address and password when you create an account
URLs you scan: The website addresses you submit for analysis
Payment information: Processed securely by Stripe — we never store your card details
Email for reports: If you use the "email me this report" feature

Information Collected Automatically

IP address: Used for rate limiting free scans (3 per day)
Usage analytics: Page views and feature usage via Vercel Analytics (privacy-focused, no cookies)
Scan results: The analysis results we generate from scanning your URLs

2. How We Use Your Information

To provide and improve the website analysis service
To enforce rate limits and prevent abuse
To process payments for paid plans
To send scan reports when you request them
To display your scan history on your dashboard
To communicate about your account or service updates

3. Data Sharing

We do not sell your personal data. We share data only with:

Stripe: For payment processing
Supabase: For database hosting and authentication
Vercel: For application hosting and analytics
Google PageSpeed Insights: We send URLs you scan to Google's API for performance analysis

3.5 MCP Connector Usage

If you access Foglift via our Model Context Protocol (MCP) server — for example, through Claude.ai, Claude Desktop, Cursor, Windsurf, or any other MCP client — we receive your API key, the tool names you invoke, and the arguments passed to those tools (URLs scanned, prompts checked, etc.). We log these calls for rate limiting, abuse detection, and service reliability. We do not share MCP call content with third parties except as described in §3. API-key-authenticated tool call metadata is retained for 90 days in request logs; the scan results themselves follow §5 retention.

4. Scan Result Sharing

Scan results may be shared via unique URLs (e.g., foglift.io/scan/abc123). These links are accessible to anyone who has the URL. If you share a scan result link, the recipient can view the scores and issues found.

5. Data Retention

Scan results: Stored indefinitely for registered users; 90 days for anonymous scans
Account data: Retained until you delete your account
IP addresses: Stored with scan records for rate limiting; not linked to personal identity
Email leads: Stored until you unsubscribe

6. Your Rights

You have the right to:

Access your personal data
Request deletion of your data
Export your scan history
Opt out of marketing communications

To exercise these rights, contact us at support@foglift.io.

7. Security

We use industry-standard security measures including HTTPS encryption, secure authentication via Supabase, and security headers (HSTS, CSP, X-Frame-Options). Payment data is handled entirely by Stripe and never touches our servers.

8. Cookies

We use essential cookies for authentication (session management). We use Vercel Analytics which is privacy-focused and does not use cookies. We do not use tracking cookies or third-party advertising cookies.

9. Changes to This Policy

We may update this privacy policy from time to time. The "last updated" date at the top of this page indicates when the policy was last revised.

10. Contact

For privacy questions or data requests, contact us at support@foglift.io.

Last updated: March 14, 2026

1. Information We Collect

Information You Provide

Account information: Email address and password when you create an account
URLs you scan: The website addresses you submit for analysis
Payment information: Processed securely by Stripe — we never store your card details
Email for reports: If you use the "email me this report" feature

Information Collected Automatically

IP address: Used for rate limiting free scans (3 per day)
Usage analytics: Page views and feature usage via Vercel Analytics (privacy-focused, no cookies)
Scan results: The analysis results we generate from scanning your URLs

2. How We Use Your Information

To provide and improve the website analysis service
To enforce rate limits and prevent abuse
To process payments for paid plans
To send scan reports when you request them
To display your scan history on your dashboard
To communicate about your account or service updates

3. Data Sharing

We do not sell your personal data. We share data only with:

Stripe: For payment processing
Supabase: For database hosting and authentication
Vercel: For application hosting and analytics
Google PageSpeed Insights: We send URLs you scan to Google's API for performance analysis

3.5 MCP Connector Usage

4. Scan Result Sharing

5. Data Retention

Scan results: Stored indefinitely for registered users; 90 days for anonymous scans
Account data: Retained until you delete your account
IP addresses: Stored with scan records for rate limiting; not linked to personal identity
Email leads: Stored until you unsubscribe

6. Your Rights

You have the right to:

Access your personal data
Request deletion of your data
Export your scan history
Opt out of marketing communications

To exercise these rights, contact us at support@foglift.io.

7. Security

8. Cookies

9. Changes to This Policy

We may update this privacy policy from time to time. The "last updated" date at the top of this page indicates when the policy was last revised.

10. Contact

For privacy questions or data requests, contact us at support@foglift.io.

Privacy Policy

1. Information We Collect

Information You Provide

Information Collected Automatically

2. How We Use Your Information

3. Data Sharing

3.5 MCP Connector Usage

4. Scan Result Sharing

5. Data Retention

6. Your Rights

7. Security

8. Cookies

9. Changes to This Policy

10. Contact

Privacy Policy

1. Information We Collect

Information You Provide

Information Collected Automatically

2. How We Use Your Information

3. Data Sharing

3.5 MCP Connector Usage

4. Scan Result Sharing

5. Data Retention

6. Your Rights

7. Security

8. Cookies

9. Changes to This Policy

10. Contact