Privacy Policy

Last updated: April 13, 2026

1. Information We Collect

When you use ShieldScan, we may collect:

• URLs, file hashes, and IP addresses you submit for scanning
• Google account information (name, email, profile photo) when you sign in with Google
• Usage data such as scan counts and timestamps
• Standard server logs (IP address, browser type, pages visited)

2. How We Use Your Information

We use the information collected to:

• Perform malware and threat scans on submitted content
• Authenticate your account and maintain your session
• Track scan usage for free tier limits
• Improve the Service and fix issues

3. Third-Party Services

ShieldScan uses the following third-party services:

• VirusTotal — submitted URLs, files, and IPs are sent to VirusTotal for analysis. See VirusTotal's Privacy Policy.
• Google OAuth — used for sign-in. See Google's Privacy Policy.
• Google Analytics — used to understand site usage. Data is anonymised.
• Paddle — used to process payments. See Paddle's Privacy Policy.

4. Data Retention

Scan results are not permanently stored on our servers. Session data is kept for 30 days. Server logs are retained for up to 90 days.

5. Cookies

We use a single authentication cookie (ss_token) to keep you signed in for 30 days. We also use Google Analytics cookies for usage statistics. You can disable cookies in your browser settings.

6. Your Rights

You may request deletion of your account and associated data at any time by contacting us. If you are in the EU/EEA, you have rights under GDPR including access, correction, and deletion of your data.

7. Contact

For privacy-related questions: shieldscansupport@gmail.com

← Back to ShieldScan