Privacy Policy

Last updated: February 19, 2026

1. Who We Are

CompliScan AI is operated by Wasabi OÜ, a company registered in Estonia (EU). Our registered address is Tallinn, Estonia. Contact: privacy@compliscan.ai.

2. Data We Collect

  • Free scans: The URL you submit is processed in real time. No scan data is stored on our servers. Results are returned to your browser and discarded.
  • Account data: When you sign up, we store your email address, name, and authentication data via Clerk (our identity provider).
  • Paid plan scans: Scan results, compliance scores, and issue details are stored in our EU-based database and associated with your account.
  • Payment data: Handled entirely by Stripe. We do not store credit card numbers.
  • Usage analytics: We use PostHog for anonymous product analytics. No personally identifiable information is sent to analytics.

3. How We Use Your Data

  • To provide the accessibility scanning service
  • To process payments and manage subscriptions
  • To send transactional emails (scan reports, billing)
  • To improve the product based on aggregate usage patterns

4. Data Storage & Security

All data is stored on AWS infrastructure in the EU (Frankfurt, Germany). Data is encrypted at rest (AES-256) and in transit (TLS 1.2+). Database backups are retained for 7 days.

5. GDPR Rights

As an EU-based company, we comply with GDPR. You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Object to or restrict processing

To exercise these rights, email privacy@compliscan.ai.

6. Third-Party Services

  • Clerk — Authentication (privacy policy)
  • Stripe — Payments (privacy policy)
  • Anthropic (Claude AI) — AI fix suggestions. Scan data sent to Claude API is not used for model training.
  • AWS — Infrastructure (EU region)

7. Cookies

We use essential cookies for authentication (Clerk session). We do not use advertising or tracking cookies.

8. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated date. For significant changes, we will notify registered users by email.