AgentProof Privacy Policy

Last Updated: [DATE — TO BE SET BEFORE PUBLICATION]
Effective Date: [DATE — TO BE SET BEFORE PUBLICATION]
Version: 1 (Draft — Not Effective)

1. Who We Are

AgentProof is a multi-protocol coherence auditing service for e-commerce stores. Operated by Reinking Software Consulting LLC (“RSC”), a Texas limited liability company based in El Paso, Texas.

Privacy contact:
Adam Reinking
Reinking Software Consulting LLC
El Paso, Texas
privacy@useagentproof.com

2. The Short Version

We are a B2B diagnostic tool. We scan public store URLs to check protocol conformance. We collect your email address, store URL, and scan results to deliver the Service. We use Plausible Analytics (no cookies, no PII). We do not sell your data. We do not access your customers’ data.

3. Data We Collect

Account Data

Email address (login, billing, scan alerts), optional business name, and Stripe-generated payment metadata (last four digits, card brand, expiration). RSC never stores your full credit card number — Stripe handles all payment data.

Scan Data

Store URL you submit, publicly accessible HTTP responses from that URL (equivalent to what a search engine crawler sees), scan results (AgentProof Score, grade, findings), and scan metadata (date/time, protocol spec version, account ID).

We do not collect your customers’ personal data, authenticated content behind your store’s login, your order history, or data from any URL other than the one you submit.

Analytics

We use Plausible Analytics — EU-hosted, no cookies, no fingerprinting, no PII. Aggregate page view counts, referrer, country-level geography, device type only. No Google Analytics or advertising trackers.

Support Communications

If you contact us by email, we retain correspondence records to respond and improve the Service.

4. How We Use Your Data

• Providing and operating the Service (contract performance)
• Processing payments and managing subscriptions (contract performance)
• Sending scan notifications and product updates (legitimate interest)
• Marketing emails (consent only — opt-in)
• Fraud prevention and security (legitimate interest)
• Legal compliance

5. Data Sharing

We share data only with service providers necessary to operate the Service:

• Cloudflare — hosting, DNS, D1 database, Workers runtime. EU Standard Contractual Clauses apply.
• Stripe — payment processing. Stripe’s privacy policy governs payment data.
• Resend — transactional email (scan alerts, waitlist confirmation). EU-US data transfer covered by Standard Contractual Clauses.
• Plausible — analytics. EU-hosted; does not receive PII.

We do not sell your data. We do not share data with advertising networks.

6. Data Retention

7. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict processing of your personal data. To exercise any right, contact us at privacy@useagentproof.com.

EU/EEA and UK residents (GDPR/UK GDPR): Right of access, rectification, erasure, restriction, data portability, and to object to processing based on legitimate interest. You may also lodge a complaint with your national supervisory authority.

California residents (CCPA/CPRA): Right to know, delete, correct, and opt out of sale (we do not sell data). No discrimination for exercising rights.

8. Security

Data is hosted on Cloudflare D1 (SQLite, Cloudflare’s managed infrastructure). All data in transit is encrypted via TLS 1.2+. IP addresses are stored only as SHA-256 hashes — we cannot reverse-engineer an IP from a stored hash. Raw IP addresses are never persisted.

9. Changes to This Policy

We will provide at least 30 days’ notice of material changes by email to your registered address and by posting the updated Policy at useagentproof.com/privacy. The current version is always available at that URL.

Contact

Reinking Software Consulting LLC
El Paso, Texas
privacy@useagentproof.com