Bucketscan Logo

Bucketscan

Privacy Policy

No one likes their data being leaked. That's why Bucketscan is committed to protecting your privacy and data. Therefore, if you provide us with your data, whether directly or indirectly, you can be assured it will adhere to this privacy policy.

What does this policy cover?

This privacy policy applies to Bucketscan's "Services". These include:

  • The bucketscan.com website and customer dashboard
  • The bucketscan integrations with any cloud storage platform
  • The bucketscan API

Below explains what data we collect, why and the choices you have.

Information we collect

We only collect information about you if we have reason to do so - for example, to provide our Services, communicate with you, or to make our Services better.

We collect information in two ways.

  1. When you provide information to us
  2. Automatically when using our Services.

Information you provide to us

  • Account information. We require your email address and a password to sign up for an account on Bucketscan. Optionally you can provide us with your project or business name.
  • Billing. If you buy a subscription from us - you will provide additional information required to process the transactions. This can include your full name, credit card information, contact information and your business information (such as tax references e.g., VAT number).
  • Support information. If you reach out to us for product support or details, you may provide us with information relating to your query.

Information we collect automatically

  • Logs. As with many online services, we collect logs around the usage of our product such as when you make API calls, where from, and information about your browser when you log into the site. We also collect logs when you make changes to your account.

How long we keep information

We do not keep information for longer than necessary.

  • Inactive accounts are kept for two years. A notification is then sent to the account owner, if the account is still inactive after a further 30 days, it's deleted.
  • Backups are kept for up to 7 days. Therefore, when you delete or remove information from your account, your information can still be recovered from our backups for up to 7 days.

Legal basis

We have a legal basis for collecting and processing your data in the European Union under the General Data Protection Regulation (GDPR). Our legal bases include:

  • Contractual Necessity: We need to process your data to fulfill our contractual obligations to you when you use our Services.
  • Legitimate Interests: We process data for our legitimate business interests, such as improving our Services, ensuring security, and preventing fraud.
  • Consent: In some cases, we collect and process your data based on your explicit consent, which you can withdraw at any time.
  • Legal Compliance: We may need to process your data to comply with applicable laws and regulations.

We ensure that our data collection and processing activities are always aligned with these legal bases and the principles of data minimization and purpose limitation as outlined in the GDPR.

Security

No service is ever 100% secure, that said it is always the standard we are trying to meet. We work very hard to protect information about you against unauthorised access, destruction or other malicious behaviour. As a security tool ourselves, we take this responsibility seriously. We therefore take reasonable measures to monitor and scan our systems. In the event of a data breach, we would handle this inline with our policies.

Your rights

Regardless of the country you reside in, we will honour the rights of the GDPR regulations. This includes:

  • Request access to your personal data
  • Request correction or deletion of your data
  • Object to our use and processing of your data
  • Request we limit our use and processing of your data
  • Request portability of your personal data.

In most cases, you should be able to update or delete your personal data in your account settings. But if you are unable to do so, please contact us.

Further to this, you may choose to close your account with us to remove your data from our system.

List of sub-processors

Bucketscan.com uses these products and services (which are all GDPR compliant).

  • Netlify - for hosting our website
  • AWS - for hosting our backend infrastructure and virus scanning software.
  • Supabase - for hosting our database and authentication data.
  • Stripe - for handling billing and payments.
  • Crisp.chat - for live chat support.
  • Logsnag - for product logging.
  • HubSpot - our customer CRM.
  • LoginLlama - to prevent unauthorised access to your account.

How to contact us

If you have any questions about our privacy policy, please reach out to us: