Website Review Day

Data Collection & Usage

We collect personal, technical, and usage data to provide and improve our services.

Your data is used for service delivery, customer support, security, and legal compliance.

We process data under user consent, contractual obligation, legitimate interest, or legal compliance.

We do not sell user data under any circumstances.
However, we may share data with:
- Third-party service providers who assist in processing payments, security, analytics, and platform functionality.
- Legal authorities if required by law, regulatory compliance, or legal proceedings.
- Business transfers, if Website Review Day undergoes a merger, acquisition, or asset sale.
Website Review Day ensures that third-party service providers only receive the minimum data necessary to perform their services and that they adhere to data protection regulations.

Website Review Day may integrate with third-party APIs for website scanning, analytics, or security.
These integrations are used solely to enhance platform functionality.
Data shared with third parties is limited to what is strictly necessary for service functionality.
Users are encouraged to review the privacy policies of integrated third-party services, as Website Review Day does not control their data handling practices.

If data is processed outside the EU/EEA or Switzerland, Website Review Day relies on Standard Contractual Clauses (SCCs) and other legally recognized mechanisms to ensure GDPR compliance.
Where required, Website Review Day implements additional safeguards, such as encryption, access restrictions, and pseudonymization, to further protect transferred data.
Users acknowledge that while Website Review Day takes all reasonable measures to secure international data transfers, risks associated with cross-border processing cannot be entirely eliminated.

Users have rights to access, correct, delete, and export their data, and object to processing.

Inactive accounts will be considered for deletion after 12 months of inactivity, except where retention is required for legal, security, or operational purposes.
Users may request account reactivation before deletion.
Certain data, such as transaction records, may be retained longer where legally required.

We implement encryption, access controls, and security audits to protect user data.

In case of a data breach that is likely to result in a high risk to users’ rights and freedoms, Website Review Day will notify affected users as required under GDPR.

When users create accounts or interact with the platform, Website Review Day acts as a Data Controller.
This includes account management, marketing, security, and processing payments.
As a Data Controller, Website Review Day determines the purposes and means of data processing.

Users submitting third-party website URLs for review are solely responsible for ensuring their submission complies with all applicable data protection laws (e.g., GDPR, CCPA).
Website Review Day does not assume liability for unauthorized or unlawful submissions of third-party URLs.
Website Review Day processes publicly available data for analysis and does not verify ownership or authorization of submitted URLs.
Users must ensure they have the necessary rights before submitting a website for review.

Website Review Day is not intended for individuals under 18 years of age.
If we become aware that we have collected data from a minor, we will take appropriate steps to delete the data in compliance with applicable laws.

Reports generated through Website Review Day's automated processes are informational only and should not be considered legal, compliance, or financial advice.
Users acknowledge that automated evaluations may contain errors, omissions, or limitations based on the availability and accuracy of public data.
Website Review Day is not responsible for any consequences arising from reliance on automated reports.
Users are encouraged to seek expert verification before implementing any recommendations.

We may update this policy periodically.
Users will be notified of significant changes affecting their rights or data usage through one or more of the following methods:
- notification banner displayed on the Website Review Day homepage.
- direct email notification to registered users.
- a requirement for users to review and accept the updated policy upon their next login.
Users who continue using the platform after receiving a policy update notification will be deemed to have accepted the changes.
For critical updates that require explicit consent, Website Review Day will prompt users to provide renewed consent before continuing to use the services.