🛡️
We built Pegalytics to help you monitor your websites — not to monetize your data. We do not sell, rent, or share your personal information with advertisers or third parties for marketing purposes.
01 Information We Collect
When you use Pegalytics, we collect the following types of information:
- Account information — your email address and password (stored securely via Supabase Auth).
- Website data — the URLs, names, and configurations of websites you add to your dashboard.
- Usage data — pages visited within the app, features used, and timestamps of activity.
- Login metadata — IP address at time of login, for security purposes only.
- Third-party tokens — OAuth tokens for Google Analytics and Google Search Console, stored encrypted and used only to fetch your data.
- Payment information — processed entirely by Stripe. We never store your card details.
02 How We Use Your Information
We use the information we collect solely to provide and improve the Pegalytics service:
- Authenticate your account and maintain your session securely.
- Monitor the websites you have added and send you uptime, SSL, and domain alerts.
- Fetch SEO, analytics, and revenue data from connected Google services on your behalf.
- Send transactional emails such as account confirmation, password resets, and alert notifications.
- Improve the reliability and performance of the platform.
We do not use your data to serve ads, build marketing profiles, or share with third parties for commercial purposes.
03 Data Storage & Security
Your data is stored in Supabase, a secure cloud database provider. We apply the following security measures:
- Row Level Security (RLS) — every database table is protected so users can only access their own data.
- Encrypted connections — all communication between your browser and our servers uses TLS/HTTPS.
- Secure authentication — passwords are hashed by Supabase Auth and never stored in plain text.
- API rate limiting — all endpoints are rate-limited to prevent abuse.
- Access tokens — Google OAuth tokens are stored server-side only and never exposed to the browser.
While we take security seriously, no system is 100% immune to risk. We encourage you to use a strong, unique password for your Pegalytics account.
04 Third-Party Services
Pegalytics integrates with the following third-party services to deliver its features:
- Supabase — database, authentication, and file storage.
- Google APIs — Google Analytics, Google Search Console, and Google AdSense data retrieval.
- Resend — transactional email delivery (alerts, confirmations).
- OpenAI — AI-generated SEO suggestions within the platform.
Each of these services operates under their own privacy policies. We only share the minimum data necessary for them to function.
05 Cookies & Tracking
Pegalytics uses minimal cookies, strictly necessary for the service to function:
- Session cookies — to keep you logged in across page loads.
- Preference cookies — to remember your UI preferences such as dark mode.
We do not use advertising cookies, cross-site tracking pixels, or any form of behavioral advertising technology. We do not use Google Analytics on our own marketing pages.
06 Your Rights
You have full control over your data. At any time you may:
- Access your data — export your website list and account information from the Settings page.
- Correct your data — update your account details at any time from Settings.
- Delete your account — permanently delete your account and all associated data from the Settings page. Deletion is immediate and irreversible.
- Revoke Google access — disconnect your Google account from within the app at any time.
- Data portability — request a copy of your data by contacting us at the address below.
If you are located in the European Union, you have additional rights under GDPR including the right to restrict processing and lodge a complaint with your supervisory authority.
07 Data Retention
We retain your data for as long as your account is active. Specifically:
- Account data is retained until you delete your account.
- Login logs are retained for 90 days and then automatically purged.
- Uptime check history is retained for 30 days.
- After account deletion, all data is permanently removed within 24 hours.
08 Children's Privacy
Pegalytics is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately and we will delete it.
09 Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For significant changes, we will notify you by email. Your continued use of Pegalytics after changes are posted constitutes your acceptance of the updated policy.
10 Contact Us
If you have any questions about this Privacy Policy or how we handle your data, please reach out: