WebSecCheck — How Secure Is Your Website?

Last updated: February 2026

1. Information We Collect

When you use our scanning service, we collect the URL you submit for analysis. We perform security checks against publicly accessible endpoints only. We do not access private areas of your website, databases, or internal systems during free scans.

2. How We Use Your Information

URLs submitted are used solely to perform the requested security assessment. Scan results are generated in real-time and provided directly to you. We may retain anonymized, aggregate scan statistics to improve our scanning engine.

3. Data Retention

Free scan results are retained for 30 days and then automatically deleted. Paid report data is retained for 12 months or until you request deletion. We do not sell, rent, or share your scan data with third parties.

4. Security

All data in transit is encrypted using TLS 1.3. Data at rest is encrypted using AES-256. Our infrastructure is hosted in SOC 2 compliant data centers. We conduct regular security assessments of our own platform.

5. Cookies

We use essential cookies for session management. We do not use third-party tracking cookies or advertising pixels. Analytics, if used, are privacy-respecting and cookieless.

6. Your Rights

You have the right to access, correct, or delete your data at any time. You can request a copy of all data we hold about you. To exercise these rights, contact us at privacy@webseccheck.com.

7. Penetration Testing

For paid penetration tests, we require explicit written authorization before conducting any active testing. All findings are shared exclusively with the authorized contact. NDA agreements are available and recommended.

8. Contact

For privacy-related inquiries: privacy@webseccheck.com

Privacy Policy