Privacy Policy

Introduction

This Privacy Policy describes how Cyberscope (“we,” “our,” or “us”) collects, uses, and protects your information when you use our smart contract security analysis platform (the “Service”). We are committed to protecting your privacy and ensuring the security of your personal information.

Information We Collect

Information You Provide Directly

• Account Information: When you sign in through Google or GitHub, we collect your name, email address, and profile picture from these services.
• Smart Contract Files: Files you upload for security analysis, including Solidity source code and related documentation.
• Project Data: Information about your projects, including project names, descriptions, and analysis results.

Information We Collect Automatically

• Usage Analytics: Through Vercel Analytics, we collect information about how you use our Service, including pages visited, features used, and performance metrics.
• Device Information: Browser type, operating system, IP address, and device identifiers.
• Cookies and Session Data: Authentication tokens and session information to keep you signed in and improve your experience.

How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our smart contract security analysis services
• Authenticate your account and manage your sessions
• Process and analyze your smart contract files
• Generate security reports and vulnerability assessments
• Communicate with you about your account and our services
• Analyze usage patterns to improve our platform
• Ensure the security and integrity of our Service

Third-Party Services

Authentication Providers

We use third-party authentication services to secure your account:

• Google OAuth: When you sign in with Google, we receive your basic profile information (name, email, profile picture) as permitted by Google's privacy policy.
• GitHub OAuth: When you sign in with GitHub, we receive your basic profile information as permitted by GitHub's privacy policy.

Other Third-Party Services

• Vercel Analytics: We use Vercel Analytics to understand how our Service is used and to improve performance. This service collects anonymous usage data.
• Amazon Web Services (AWS): We use AWS S3 for secure file storage of your uploaded smart contracts.

Data Storage and Security

We implement appropriate technical and organizational security measures to protect your personal information:

• All data is encrypted in transit using HTTPS/TLS
• Files are stored securely in AWS S3 with appropriate access controls
• Authentication is handled through secure OAuth flows
• Session data is protected with secure cookies
• Regular security audits and updates to our infrastructure

Data Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties, except:

• With your explicit consent
• To our trusted service providers who assist in operating our platform (AWS, Vercel)
• When required by law or to protect our rights and safety
• In connection with a merger, acquisition, or sale of assets (with notice to users)

Your Rights and Choices

You have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your account and associated data
• Data Portability: Request a copy of your data in a portable format
• Withdraw Consent: Withdraw consent for data processing where applicable

To exercise these rights, please contact us at the email address provided below.

Cookies and Tracking

We use cookies and similar technologies to:

• Maintain your authentication session
• Remember your preferences and settings
• Analyze usage patterns through Vercel Analytics
• Improve the performance and functionality of our Service

You can control cookies through your browser settings, but disabling certain cookies may affect the functionality of our Service.

Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy. When you delete your account, we will delete your personal information within 30 days, except where we are required to retain certain information for legal or regulatory purposes.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure that such transfers are conducted in accordance with applicable data protection laws and implement appropriate safeguards to protect your personal information.

Children's Privacy

Our Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the “Last updated” date. We encourage you to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at: