Privacy Policy

Last updated: May 20, 2025

Data Use

DoubleCheck is designed with privacy in mind. Here is how we handle your data across the browser extension, web dashboard, and scanning tools.

Accounts and Payment Data

While basic extension features do not require an account, creating a Pro account or signing in on the web dashboard requires an email address. Account data is used to manage your plan, daily scan limits, and purchase restoration across devices.

We do not store your credit card information. All payment processing—including Pro subscriptions ($12.99/month) and one-time report unlocks ($3.99)—is handled securely by our third-party payment provider, Stripe.

What We Don't Store

  • We do not store full chat text or conversation history
  • We do not track your browsing behavior across websites
  • We do not sell or share your personal data with third parties for marketing
  • We do not retain uploaded ZIP files or full repository clones. Code provided for the Repo Scanner or Secret Leak Check is processed in memory (or in short-lived temporary directories that are deleted as soon as the scan finishes). We do not keep your source tree on our servers after processing.

What We Do Store (Scan Reports)

To deliver scan results and paid reports, we store scan metadata and findings—such as file paths, severity ratings, redacted secret previews, and short code snippets cited in the report—not your full repository or uploaded archive. Unlocked reports remain available via your scan link or account until you request deletion.

What Gets Sent to AI Services

When you use cloud AI scanning in the extension, message text is sent to an AI provider (such as OpenAI or Google Gemini) for scam analysis.

When you use our web scanning tools, relevant data—such as chat messages, specific code snippets selected for review, or flagged secret patterns—may be sent to an AI provider for deeper analysis and explanation. We send only what is needed for the specific scan. AI providers process this data under their own API privacy and retention policies.

Data Storage

Extension preferences and scan history are stored locally in your browser. For web-based tools (such as the Repo Scanner and Secret Leak Check), your upload or linked repository is processed ephemerally on our servers: the archive or clone is not stored permanently, but scan findings needed for your report may be saved as described above.

Analytics

We may collect anonymous usage statistics to improve the product. This does not include personal information or full message content.

Changes to This Policy

We may update this privacy policy from time to time. We will notify users of any significant changes by updating the "Last updated" date at the top of this page.

Contact

If you have questions about this privacy policy, please contact us through the Support page.