Privacy Policy

1. Introduction

Welcome to SiteViser. This Privacy Policy explains how Sageble LTD ("we", "us", "our"), the operator of the SiteViser service, collects, uses, shares, and protects your personal information when you use our website www.siteviser.com (the "Marketing Site") and our web application app.siteviser.com (the "Service").

We are committed to protecting your privacy and processing your personal data fairly and lawfully in compliance with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the EU General Data Protection Regulation (GDPR).

This policy outlines the types of information we collect, how we use it, the legal basis for processing, who we share it with, how we protect it, your rights, and how you can contact us.

2. Data Controller

The data controller responsible for your personal information is:

Sageble LTD
Registered in England and Wales
Company Registration Number: 16106650
Registered Address: 17 Green Lanes, Unit 805, London, England, N16 9BS

For any privacy-related questions or requests, please contact us at info@siteviser.com or via our contact form at siteviser.com/contact.

3. Information We Collect

We collect different types of information for various purposes to provide and improve our Service to you.

3.1. Information You Provide Directly

Account Registration: When you register for an account on app.siteviser.com, we collect your first name, last name, email address, and password (which is securely hashed).
Domain Information: After registration, to use the Service, you are required to provide the domain name(s) you wish to monitor and an email address associated with that domain (used for certain checks or verification if needed, and for associating the domain with your account).
Contact Information: If you contact us via email or our contact form, we collect your name, email address, and any information you choose to include in your message.
Payment Information: When you subscribe to a paid plan, our payment processor, Stripe, collects your payment details (e.g., credit card number, billing address). We do not directly collect or store your full payment card information on our servers.

3.2. Information Collected Automatically

Login and Session Data (Temporary): When you log into the Service (app.siteviser.com), we temporarily capture your IP address and user-agent string (browser type, operating system). This data is used solely for security purposes (e.g., detecting suspicious login activity) and managing your session. This information is logged per session and is *not* stored long-term in association with your account profile.
Marketing Site Analytics (www.siteviser.com only): On our Marketing Site homepage (www.siteviser.com), we use Google Analytics to collect standard internet log information and details of visitor behaviour patterns (e.g., page views, site navigation). This information is processed in a way that does not directly identify anyone. This is *not* used on the Service platform (app.siteviser.com).

3.3. Information Fetched by the Service

Public Domain & Website Data: The core function of our Service involves fetching *publicly available* information related to the domain(s) you add to your account. This includes data such as domain registration details (registrar, expiry date), DNS records, server IP addresses, mail server configurations, SSL certificate details, website performance metrics, and search engine index status. This information is obtained from third-party APIs and public sources.

4. How We Use Your Information

We use the collected information for the following purposes:

To Provide and Maintain the Service: To create and manage your account, process your subscriptions, deliver the monitoring services you requested (e.g., domain expiry checks, uptime monitoring), and provide customer support.
To Improve the Service: To understand how users interact with the Service (in aggregate, non-identifiable ways where possible) and improve its functionality and user experience. Analytics data from the Marketing Site helps us understand traffic patterns.
To Communicate With You: To send you important service-related communications, such as platform updates, security notifications, monitoring alerts relevant to your configured domains, and responses to your inquiries. **We do not send marketing emails.**
For Security Purposes: To monitor for fraudulent or suspicious activity, protect the integrity of our Service, verify accounts, and enforce our Terms of Service. Temporary logging of IP addresses and user agents during login helps us achieve this.
To Process Payments: To facilitate subscription payments via our third-party payment processor (Stripe).
To Comply with Legal Obligations: To meet legal requirements, regulations, or lawful requests from public authorities.

5. Legal Basis for Processing (GDPR & UK GDPR)

We process your personal data based on the following legal grounds:

Contractual Necessity: Processing your Account Information (name, email, password) and Domain Information is necessary to provide the Service you have requested under our Terms of Service. Processing payment information (via Stripe) is necessary to fulfil the subscription contract.
Legitimate Interests: We process temporary login data (IP address, user-agent) for the legitimate interest of securing our Service and preventing fraud. We use aggregated, anonymized data to improve our Service. Sending essential service communications (updates, security alerts) is based on our legitimate interest in keeping you informed about the Service you use. Using Google Analytics on the Marketing Site is based on our legitimate interest in understanding website traffic.
Consent: For cookies used on the Marketing Site (Google Analytics), we rely on your consent provided via our cookie banner/settings (refer to our Cookie Policy). You can withdraw this consent at any time.
Legal Obligation: We may need to process certain data if required by law or to respond to valid legal requests.

6. Data Sharing and Third Parties

We do not sell your personal information. We only share your data in the following limited circumstances:

Payment Processing: We share necessary information with Stripe to process your subscription payments securely. Stripe operates independently, and its use of your information is governed by its own privacy policy.
Third-Party APIs (for Public Data): Our Service interacts with various third-party APIs to fetch the *publicly available* domain and website information required for the monitoring features. We do not share your personal account data (like name or email) with these APIs.
Analytics Provider (Marketing Site Only): We use Google Analytics on our Marketing Site (www.siteviser.com). Google may collect data as described in their privacy policy. This does *not* apply to the Service platform (app.siteviser.com).
Infrastructure Providers: We use third-party service providers for hosting, database management, and infrastructure. These providers process data on our behalf and are bound by contractual obligations to keep data secure and confidential.
Legal Requirements: We may disclose your information if required by law, subpoena, or other legal process, or if we have a good faith belief that disclosure is reasonably necessary to (i) investigate, prevent, or take action regarding suspected or actual illegal activities or to assist government enforcement agencies; (ii) enforce our agreements with you; (iii) investigate and defend ourselves against any third-party claims or allegations; (iv) protect the security or integrity of our Service; or (v) exercise or protect the rights and safety of Sageble LTD, our users, personnel, or others.
Business Transfers: If Sageble LTD is involved in a merger, acquisition, or asset sale, your Personal Data may be transferred. We will provide notice before your Personal Data is transferred and becomes subject to a different Privacy Policy.

7. International Data Transfers

Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction (e.g., UK, EEA).

Specifically:

Our hosting infrastructure may be located within the UK, EU, or other countries with adequate data protection standards.
Our payment processor, Stripe, may process data in the United States or other countries. Stripe uses approved transfer mechanisms like Standard Contractual Clauses (SCCs) for transfers outside the UK/EEA.
Google Analytics may transfer data collected on the Marketing Site outside the UK/EEA, typically to the United States, under mechanisms like SCCs.

We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and that appropriate safeguards are in place before transferring your data internationally.

8. Data Security

We implement appropriate technical and organizational measures to protect the security of your personal information. This includes:

Encrypting user data stored in our database.
Securely hashing passwords using industry-standard algorithms.
Using secure connections (HTTPS) for data transmission.
Restricting access to personal data to authorized personnel only.
Regularly reviewing our information collection, storage, and processing practices.
Using secure third-party services like Stripe for payment processing.
Temporarily logging IP/user-agent data for security, without long-term storage associated with user profiles.

However, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.

9. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Account Information: We retain your account information (name, email, domain list) as long as your account is active. If you delete your account, we will delete this information within a reasonable timeframe, subject to backup cycles and any legal retention obligations.
Temporary Session Data: IP addresses and user-agent data collected during login are retained only for the duration necessary for security checks related to that session and are not stored long-term.
Communications: Records of communications with you (e.g., support requests) may be kept for longer periods to maintain a history of interactions.
Payment Records: Basic transaction information (excluding full card details) may be retained for accounting and legal purposes as required by law (e.g., for tax audits).

10. Your Data Protection Rights (UK GDPR / GDPR)

Depending on your location and applicable law, you have certain rights regarding your personal data:

Right to Access: You have the right to request copies of your personal data.
Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete. You can usually update your basic account information directly within your account settings.
Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data, under certain conditions. You can typically initiate account deletion through the Service interface.
Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
Right to Object to Processing: You have the right to object to our processing of your personal data based on legitimate interests, under certain conditions.
Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions (typically applies to data processed by automated means based on consent or contract).
Right to Withdraw Consent: If we are processing your data based on consent (e.g., for certain cookies), you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us at info@siteviser.com. We will respond to your request within one month, as required by law.

You also have the right to lodge a complaint with a supervisory authority, such as the Information Commissioner's Office (ICO) in the UK, if you believe our processing of your personal data infringes applicable data protection laws.

11. Children's Privacy

Our Service is not intended for use by children under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from children under 18. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from Children without verification of parental consent, we take steps to remove that information from our servers.

12. Cookies

We use cookies and similar tracking technologies. Please refer to our Cookie Policy for detailed information on the cookies we use, why we use them, and how you can manage them.

13. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. If the changes are significant, we may also provide a more prominent notice (such as by email or a notification within the Service).

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

By email: info@siteviser.com
By visiting this page on our website: siteviser.com/contact