Legal

Privacy Policy

What we collect, why we collect it, and what you can do about it.

Effective May 15, 2026

This Privacy Policy explains what personal information Crawlbench ("Crawlbench", "we", "us", or "our") collects when you use the Crawlbench web application (the "Service").

It also explains how we use that information, who we share it with, and the choices you have. We act as the data controller for personal data described in this policy.

1. Information we collect

Information you give us

  • Account data: email address, password (hashed), name (if provided), and workspace names you create.
  • Configuration data: monitors, filters, geo selections, notes, and other settings you enter into the Service.
  • Communications: messages you send us via email or support channels.

Information we collect automatically

  • Usage data: pages viewed, features used, timestamps, approximate location derived from IP, and device/browser information.
  • Cookies and similar technologies: a session cookie to keep you signed in and a small set of cookies for security (CSRF) and basic analytics. We do not use third-party advertising cookies.
  • Server logs: IP address, request paths, status codes, and timestamps, retained for security and debugging.

Information from third parties

  • Payment processor: when you buy a paid plan, Paddle ("Paddle.com Market Ltd.") processes the payment and shares limited transaction details with us (e.g., transaction ID, plan, amount, country, billing email). We do not see or store your full card number.
  • Facebook Marketplace public data: the Service fetches publicly available listing data from Facebook Marketplace based on the monitors you configure. This is product data, not your personal data, but it is stored against your workspace so we can surface matches to you.

2. How we use information

  • Provide, operate, and improve the Service.
  • Authenticate you and keep your account secure.
  • Run the crawl-and-match pipeline against the monitors you configure.
  • Process payments and manage subscriptions through Paddle.
  • Send transactional emails (sign-up confirmation, password reset, billing receipts, important service notices). You cannot opt out of essential transactional emails while you have an active account.
  • Send product or marketing emails only if you opt in; you can unsubscribe at any time.
  • Detect, investigate, and prevent fraud, abuse, or security incidents.
  • Comply with legal obligations.

3. Legal bases (GDPR / UK GDPR)

If you are in the EEA or UK, we process your personal data on these legal bases:

  • Contract: to provide the Service you signed up for.
  • Legitimate interests: to keep the Service secure, prevent abuse, and improve features.
  • Consent: for optional marketing emails and non-essential analytics, where required.
  • Legal obligation: to comply with tax, accounting, and other applicable laws.

4. Sharing

We do not sell your personal information. We share it only with:

  • Service providers that help us run the Service (hosting, email delivery, error monitoring, payments via Paddle). They process data only on our instructions and under contract.
  • Legal recipients if we are required to do so by law, court order, or to protect our rights, users, or the public.
  • Successors in the event of a merger, acquisition, or sale of assets; we will notify you before your data is transferred.

5. International transfers

Crawlbench is operated from the United States. If you access the Service from outside the US, your information will be transferred to and processed in the US. Where required, we rely on appropriate safeguards (such as the EU Standard Contractual Clauses) for international transfers.

6. Retention

  • Account and workspace data are retained while your account is active.
  • When you delete a workspace or your account, we delete or anonymize associated data within 30 days, except where we must keep records for legal, tax, or fraud-prevention reasons.
  • Server logs are retained for up to 90 days.
  • Billing records are retained for the period required by applicable tax law (typically up to 7 years).

7. Your rights

Depending on where you live, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Delete your data ("right to be forgotten").
  • Restrict or object to certain processing.
  • Receive a portable copy of your data.
  • Withdraw consent where processing is based on consent.
  • Lodge a complaint with your local data protection authority.

To exercise any of these rights, email [email protected] from the address associated with your account. We will respond within 30 days.

8. California residents (CCPA / CPRA)

California residents have the right to know what personal information we collect, request deletion, and opt out of the "sale" or "sharing" of personal information. We do not sell or share personal information for cross-context behavioral advertising. To make a request, contact [email protected].

9. Security

We use reasonable technical and organizational measures to protect your information, including encryption in transit (HTTPS), hashed passwords, access controls, and regular security review. No system is perfectly secure; if we discover a breach that affects your data, we will notify you as required by law.

10. Children

Crawlbench is not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us personal data, contact us and we will delete it.

11. Cookies

We use a small number of cookies:

  • Essential: session, CSRF protection, sign-in state. Required to use the Service.
  • Functional / preferences: theme, accent, density.
  • Analytics: basic, privacy-respecting product analytics. No third-party advertising cookies.

12. Changes to this policy

We may update this Privacy Policy from time to time. If we make a material change, we will notify you (for example, by email or in-app notice) before it takes effect.

13. Contact

For privacy questions or to exercise your rights, email [email protected].

Contact: [email protected]