Privacy

Privacy Policy

Last updated: March 2026

1. Introduction

AllyShield ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, applications, and services (collectively, the "Service"). By accessing or using the Service, you agree to the terms of this policy.

2. Information We Collect

We collect information in several ways:

  • Account Data: Name, email address, organization name, and billing details when you register.
  • Usage Data: Pages visited, features used, timestamps, IP addresses, browser type, and device information.
  • Scan Data: URLs, accessibility audit results, and remediation history processed through the Service.
  • Communications: Messages you send to our support team or through in-app feedback.
  • Cookies & Tracking: Data collected via cookies and similar technologies (see our Cookie Policy).

3. How We Use Your Information

  • Provide, maintain, and improve the Service.
  • Process transactions and send billing-related communications.
  • Send product updates, security alerts, and support messages.
  • Analyze usage patterns to improve user experience and develop new features.
  • Detect, prevent, and address fraud, abuse, or technical issues.
  • Comply with legal obligations and enforce our Terms of Service.

4. Data Storage & Security

Your data is stored on secure servers hosted by reputable cloud infrastructure providers. We employ industry-standard encryption (TLS 1.3 in transit, AES-256 at rest), regular security audits, access controls, and monitoring to protect your information. While no system is 100% secure, we take commercially reasonable steps to safeguard your data.

5. Third-Party Services

We may share limited data with trusted third parties that help us operate the Service, including payment processors, analytics providers, and infrastructure partners. These parties are contractually obligated to protect your data and use it only for the purposes we specify. We do not sell your personal information to third parties.

6. Your Rights

Under GDPR (EEA residents): You have the right to access, rectify, erase, restrict processing, data portability, and object to processing of your personal data. You may also withdraw consent at any time.

Under CCPA (California residents): You have the right to know what personal information we collect, request deletion, opt out of the sale of personal information, and not be discriminated against for exercising your rights.

To exercise any of these rights, contact us at privacy@allyshield.net.

7. International Transfers

If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the US or other jurisdictions. We use Standard Contractual Clauses and other approved mechanisms to ensure adequate protection for international data transfers in compliance with applicable law.

8. Children's Privacy

The Service is not directed to individuals under 16. We do not knowingly collect personal information from children. If we learn that we have collected data from a child without parental consent, we will delete it promptly. If you believe a child has provided us personal information, please contact us at privacy@allyshield.net.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the revised policy.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact:

  • Privacy inquiries: privacy@allyshield.net
  • Data Protection Officer: dpo@allyshield.net