Accessify AI Logo
Accessify AI

PRIVACY POLICY

Accessify AI

Last Updated: January 1, 2026

Effective Date: January 1, 2026

Contact (All Privacy, Legal & Support Requests):

📩 support@accessify-ai.com

1. INTRODUCTION

Accessify AI (“Accessify AI,” “we,” “us,” or “our”) provides a software-as-a-service (SaaS) platform that helps organizations identify potential web accessibility issues aligned with accessibility standards such as WCAG.

This Privacy Policy explains how we collect, use, disclose, and protect information when you access or use our website, application, APIs, and related services (collectively, the “Services”).

We are an India-based service (entity under incorporation) and serve customers globally. We process personal data in accordance with applicable data protection laws, including the GDPR and CCPA/CPRA where applicable.

2. DEFINITIONS

  • Personal Data / Personal Information: Information that identifies or can reasonably be linked to an individual.
  • Customer: An individual or organization using Accessify AI.
  • Controller: The party determining the purposes and means of processing personal data (typically you).
  • Processor: The party processing data on behalf of the controller (Accessify AI).
  • Subprocessor: A third-party service provider assisting us in delivering the Services.

3. INFORMATION WE COLLECT

3.1 Information You Provide

When you register or use the Services, we may collect:

  • Account Information: Name, email address, organization name, role
  • Authentication Data: Managed via Clerk (we do not store passwords)
  • Billing Information: Billing email and transaction metadata (processed by PayPal)
  • Usage Data: Scan history, reports, configuration settings
  • Communications: Emails or messages sent to our support team

3.2 Information Collected Automatically

We automatically collect limited technical data, including:

  • IP address
  • Browser and device type
  • Log data (timestamps, actions taken in the app)
  • Error and performance data

3.3 GitHub Integration Data (If Enabled)

If you connect GitHub:

  • Repository metadata you explicitly authorize
  • File paths and limited code snippets only where accessibility issues are detected

⚠️ We do NOT clone or store full repositories.

3.4 What We Do NOT Collect

We do not intentionally collect:

  • End-user data from your website visitors
  • Passwords, private keys, or secrets
  • Payment card numbers
  • Sensitive personal data (health, biometric, etc.)

4. HOW WE USE INFORMATION (LEGAL BASIS)

We process personal data only for legitimate purposes, including:

PurposeLegal Basis
Providing the ServicesContractual necessity
Account management & supportContractual necessity
Billing & paymentsLegal obligation
Security & abuse preventionLegitimate interest
Product improvement (aggregated/anonymized)Legitimate interest
Legal complianceLegal obligation

We do not sell personal data and do not use your data for advertising.

5. DATA SHARING & SUBPROCESSORS

5.1 Approved Subprocessors

We use the following subprocessors strictly to operate the Service:

ProviderPurpose
VercelApplication hosting
SupabaseDatabase & storage
ClerkAuthentication
PayPalPayment processing
GitHubRepository scanning (only if connected)

All subprocessors are contractually required to:

  • Process data only as instructed
  • Maintain reasonable security controls
  • Notify us of security incidents

5.2 We Do NOT Share Data With

  • Advertisers
  • Data brokers
  • Competitors
  • Marketing partners

Except where required by law.

6. DATA SECURITY (BEST-EFFORTS)

We implement commercially reasonable security measures, including:

  • Encryption in transit (HTTPS/TLS)
  • Access controls and role-based permissions
  • Secure cloud infrastructure
  • Logging and monitoring

⚠️ No system is 100% secure. We do not guarantee absolute security.

7. DATA RETENTION

Data TypeRetention
Account dataActive subscription + 30 days
Scan resultsActive subscription + 30 days
LogsUp to 90 days
Billing recordsAs required by law

Data is deleted or anonymized after the retention period unless legally required otherwise.

8. INTERNATIONAL DATA TRANSFERS

Our infrastructure may process data outside your country.

Where required (e.g., EU data), we rely on:

  • Standard Contractual Clauses (SCCs)
  • Encryption and access controls

9. YOUR RIGHTS

9.1 GDPR (Where Applicable)

You may have the right to:

  • Access your data
  • Correct inaccuracies
  • Request deletion
  • Restrict or object to processing
  • Data portability

9.2 CCPA / CPRA (Where Applicable)

You may have the right to:

  • Know what data we collect
  • Request deletion
  • Correct inaccurate data
  • Non-discrimination for exercising rights

📩 All requests: support@accessify-ai.com

We respond within legally required timelines.

10. COOKIES

We use:

  • Essential cookies (authentication, security)
  • Limited analytics (optional)

You may control cookies via your browser settings.

11. CHILDREN’S PRIVACY

The Services are not intended for children under 18.

We do not knowingly collect data from minors.

12. DATA PROCESSING AGREEMENT (DPA)

If required under GDPR or enterprise procurement, a DPA is available on request.

📩 Contact: support@accessify-ai.com

13. LEGAL DISCLOSURES

We may disclose data if required by:

  • Law, regulation, or court order
  • Government or law enforcement request

We will notify you where legally permitted.

14. CHANGES TO THIS POLICY

We may update this Privacy Policy periodically.

  • Material changes → advance notice where feasible
  • Continued use = acceptance of updated policy

15. CONTACT

All privacy, data, and legal requests must be sent to:

📩 support@accessify-ai.com
← Back to Home