Privacy policy

This policy describes the personal data collected by Confida when you use the site and service, in accordance with Regulation (EU) 2016/679 (GDPR).

Data collected

We collect your email address when you create an account, the URLs of the sites you submit to the scanner, and the answers you provide to generate your compliance documents.

Purpose of processing

This data is used to provide the service (authentication, scans, document generation), to contact you about your account, and to improve the service.

Recipients

Your data is processed by our technical subprocessors: Supabase (hosting, authentication, database) and Resend (transactional emails). It is never sold to third parties.

Retention period

Your data is kept for the duration of your account, then deleted within a reasonable period after it is closed.

Your rights

Under the GDPR, you have the right to access, rectify, erase, and port your data. To exercise these rights, contact us at the address given in the legal notice.