Privacy Policy

We collect message text that you submit for analysis through ScamSignal. We do NOT collect names, emails, or personal information unless you choose to create an account. Analysis inputs are processed in real-time and cached in memory for up to 1 hour to enable sharing functionality.

No data is stored permanently without an account. Once the cache expires or you clear your browser, the information is deleted automatically.

Submitted messages are sent to Anthropic's Claude API for scam analysis and pattern detection. We do not train AI models on your data or use your submissions to improve our systems at the cost of your privacy.

Analysis results are cached temporarily to enable the result-sharing feature via URL. This allows you to share analysis findings without re-analyzing the same message.

Anthropic (Claude API) processes your messages for scam analysis and is subject to Anthropic's privacy policy. Netlify provides our hosting infrastructure. We do not use advertising networks or tracking pixels.

We use minimal functional cookies only to enable core features like maintaining your session or remembering preferences. We do not use third-party advertising cookies or engage in cross-site tracking.

We may use privacy-respecting analytics that do not collect personal data or enable individual user tracking. Our focus is on understanding how the service is used in aggregate.

Unregistered users: Analysis results are cached for 1 hour and then automatically deleted. Registered users: Analysis history is retained in your account until you request deletion or delete your account.

Pattern library data is public educational content sourced from official scam reporting agencies and is retained for service functionality.

You can request deletion of your data at any time by contacting us. You can use ScamSignal without creating an account, and your analysis will remain temporary and private.

CCPA (California): Residents of California have the right to request disclosure of what personal data we collect and how it is used. GDPR (European Union): EU residents have rights to access, rectification, erasure, and data portability. Contact us to exercise these rights.

ScamSignal is designed for users 13 years and older. We do not knowingly collect personal data from children under 13. If we become aware that a child under 13 has provided us with information, we will delete that information promptly.

All data transmitted between your browser and our servers is encrypted using HTTPS/TLS. We do not store sensitive financial data. Analysis results are cached in-memory with automatic expiration and are never written to persistent storage without your account.

We may update this privacy policy from time to time. When we do, we will update the "Last Updated" date at the top of this page. For material changes that affect your privacy, we will announce the changes on the ScamSignal website and may request your consent before the new policy takes effect.