MonetScopeMonetScope
Sign inStart Free
Privacy

Privacy Policy

Last updated: April 20, 2026

This Privacy Policy explains what information MonetScope ("we", "us") collects when you use our website and services, how we use it, and the choices you have. We aim to collect only what we need to run the Service well.

1. Information We Collect

  • Account data — email, hashed password, full name, account creation timestamp. Passwords are hashed with bcrypt; we never store them in plain text.
  • Usage data — pages viewed, validate queries, favorites, analyses requested. Used to provide the Service and to enforce quotas and rate limits.
  • Payment data — processed by Stripe. We receive only the subscription status, plan, and last-four / brand of the card; we never store full card numbers on our servers.
  • Device & log data — IP address, browser / OS, referrer, timestamps. IP addresses used for rate-limiting are SHA-256 hashed with a secret salt before storage.
  • Cookies & local storage — we store your auth token in localStorage or sessionStorage depending on the "Keep me signed in" toggle. We also use privacy-respecting analytics (Google Analytics) on public pages; analytics is disabled on print routes to avoid leaking tokens.

2. How We Use Information

  • Provide, operate, and improve the Service.
  • Authenticate you, process payments, and manage subscriptions.
  • Send transactional emails (verification codes, digests, alerts) per your settings.
  • Enforce rate limits, detect abuse, and protect account security.
  • Comply with legal obligations and respond to lawful requests.

3. How We Share Information

We do not sell personal data. We share information only with service providers who help us operate the Service under contractual confidentiality obligations:

  • Stripe — payment processing and billing.
  • Email delivery providers — transactional email.
  • Cloud infrastructure and monitoring (e.g. Sentry for error reporting when enabled).
  • Analytics — aggregate traffic measurement on public pages.

We may also disclose information when required by law, to protect our rights, or in connection with a merger, acquisition, or sale of assets (with notice to you).

4. Data Retention

Account data is retained while your account is active. If you delete your account, we delete personal data within 30 days, except where retention is required for legal, accounting, or fraud-prevention purposes. Aggregated, de-identified data (e.g. hashed IP rate-limit counters) may be retained longer.

5. Your Rights

Depending on your jurisdiction (GDPR, CCPA, and similar laws), you may have the right to access, correct, port, or delete your personal data, and to object to or restrict certain processing. To exercise these rights, email support@monetscope.com from the address on your account. We will respond within 30 days.

6. Security

We use industry-standard measures: TLS in transit, encryption at rest for secrets, bcrypt for passwords, JWT blacklisting on logout, strict CSP and security headers, and least-privilege access controls. No system is perfectly secure; if we discover a breach affecting your data, we will notify you without undue delay.

7. International Transfers

We may process data in countries other than your own. When we transfer data internationally, we rely on appropriate safeguards such as standard contractual clauses.

8. Children

The Service is not directed to children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will delete it.

9. Changes to This Policy

We may update this Policy. Material changes will be announced via email or in-app notification. The "Last updated" date above reflects the latest revision.

10. Contact

Questions or requests? Email support@monetscope.com.