Last updated: March 2026

Privacy Policy

Information We Collect

When you use BigShield, we collect information necessary to provide and improve our email validation service. This includes:

  • Account information: your name, email address, and password when you create an account.
  • Payment information: billing details processed securely through Stripe. We do not store your full credit card number on our servers.
  • Email addresses submitted for validation: when you use our API, we process the email addresses you submit. These are used solely for validation purposes and are not stored long-term.
  • API usage data: request counts, response times, error rates, and other operational metrics tied to your account.
  • Log data: IP addresses, browser type, and access timestamps when you visit our website or dashboard.

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our email validation API.
  • Process email addresses through our multi-signal validation pipeline and return risk scores.
  • Monitor API usage to enforce rate limits and plan quotas.
  • Process payments and manage your subscription.
  • Send transactional emails related to your account (billing receipts, usage alerts, and security notifications).
  • Detect and prevent abuse, fraud, and unauthorized access to our services.
  • Improve the accuracy of our validation signals using aggregated, anonymized data.

We do not sell, rent, or share your personal information with third parties for their marketing purposes.

Data Storage and Security

Your data is stored in Supabase (PostgreSQL) with encryption at rest and in transit. API keys are stored as SHA-256 hashes, so we never retain your raw API key after initial generation.

We implement industry-standard security measures including TLS encryption for all API traffic, regular security audits, and strict access controls for our infrastructure. While no system is perfectly secure, we take reasonable steps to protect your data from unauthorized access, alteration, or destruction.

Third-Party Services

We use the following third-party services to operate BigShield:

  • Supabase: database hosting and authentication.
  • Stripe: payment processing and subscription management.
  • Vercel: application hosting and deployment.
  • Upstash: Redis caching and rate limiting.

Each of these providers has their own privacy policy governing how they handle data. We only share the minimum data necessary for each service to function.

Cookies

We use essential cookies to maintain your session and authentication state when you are logged into the dashboard. We do not use third-party tracking cookies or advertising cookies. Analytics, if any, rely on anonymized, aggregated data that does not identify individual users.

Your Rights

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate or incomplete data.
  • Request deletion of your account and associated data.
  • Export your account data in a portable format.
  • Withdraw consent for optional data processing at any time.

To exercise any of these rights, contact us at privacy@bigshield.app. We will respond within 30 days.

Data Retention

We retain your account data for as long as your account is active. API usage logs are retained for 90 days to support debugging and billing reconciliation. Email addresses submitted for validation are processed in real time and are not stored after the response is returned.

When you delete your account, we remove your personal data within 30 days. Some anonymized, aggregated data may be retained indefinitely to improve our validation accuracy.

Changes to This Policy

We may update this privacy policy from time to time. When we make significant changes, we will notify you by email or by posting a notice on our website. Your continued use of BigShield after any changes indicates your acceptance of the updated policy.

Contact Us

If you have questions about this privacy policy or how we handle your data, please contact us at privacy@bigshield.app.