Privacy Policy

Last updated: 2026-05-10 Status: v1 in good faith. [Subject to legal review pre-launch.]

This is the plain-English privacy policy for Astrant — Agent Discoverability for B2B SaaS. We try to write privacy policies the way we'd want one written for us: short, specific, and honest about what we collect and why.

What we collect

When you use Astrant's free Score tool or any paid tier:

• The URL you scan. That's the whole point — we can't compute a discoverability score without it.
• Your IP address. Used for rate-limiting (preventing abuse) and aggregate traffic analytics. Stored in tail logs for ~7 days.
• Your User-Agent string. Same uses as IP — rate-limiting and aggregate analytics. Stored in tail logs for ~7 days.
• Your email address, if you submit one. You'll only submit an email if you choose to: receive your gap-report PDF, opt into monthly auto-rescan emails, contact support, or join the pre-launch waitlist (we'll notify you when paid tiers — Audit, Implementation, Custom, Standard, Pro — open for purchase). We don't email you for any reason you didn't explicitly ask for.
• Sub-check results from the scan. The structured data Astrant computes about your site — llms.txt presence, MCP server discoverability, JSON-LD schema completeness, etc. This is not your content; it's our analysis of your public technical surface.

What we don't collect

• The full HTML of your pages. We fetch only what we need to compute checks.
• Browsing data, session recordings, or behavioral analytics.
• Anything from third parties (e.g., Google Analytics, Facebook Pixel) — we don't run external trackers on this site.

What we do with what we collect

• Compute your Astrant Score. That's the primary use.
• Send you the gap-report PDF you requested, if you submitted an email.
• Send monthly auto-rescan emails, if you opted in (default: off, never auto-checked).
• Send a launch notification, if you joined the pre-launch waitlist. One-shot transactional email when paid tiers open for purchase.
• Improve our scoring engine in aggregate. We may use anonymized scan data (no email, no IP, no User-Agent — just URL+score+sub-check results) to calibrate our methodology over time. Disclosed here so it's not a surprise.

What we don't do with what we collect

• We don't sell your data. Ever.
• We don't share it beyond our infrastructure providers (Cloudflare, who runs our Workers / D1 / KV / R2; Resend, who delivers our transactional emails; and Profound, when our paid tiers eventually integrate with their citation-tracking API). These are processors, not partners — they hold data on our behalf, under contract.
• We don't run ads, advertising pixels, or affiliate tracking.

Watermarking on PDF gap reports

PDF gap reports include a small watermark with the email address used to request them. This is an anti-abuse measure — if a report is shared without the requester's consent, the watermark identifies the original requester. The email is not visible in the PDF metadata or filename, only in the visual watermark on each page. By submitting your email to receive the PDF, you consent to having your email appear in the watermark on your copy.

Email logging

When the system needs to log information about a transactional email (for example, to track abuse, debug delivery failures, or rate-limit deletion requests), the email is hashed with a server-side salt before it touches our logs. The same email always produces the same hash, so we can correlate abuse without storing plaintext PII in tail logs. Hashes are SHA-256 truncated to 16 characters; they are not reversible and not shared.

Retention

• Free Score scan records: retained ~90 days, then deleted.
• Email-opted-in scan records: retained until you cancel the rescan opt-in (or submit a deletion request).
• Tail logs (IP, User-Agent, hashed email): retained ~7 days.
• Anonymous scan records (with all PII removed) may be retained longer for aggregate metrics. No identifying information remains.

Your rights

You have the following rights, regardless of where you're located:

• Access: ask us what data we hold about you. Email privacy@astrant.io.
• Correction: if we have something wrong, tell us, and we'll fix it.
• Deletion: visit /score/delete-me to delete every Score scan record associated with your email. We send a confirmation link valid for 24 hours. When you confirm, we delete every scan record associated with the email address you submit, not just the most recent one. If you've used Astrant from multiple email addresses, you'll need to submit a deletion request for each.
• Portability: ask us for a JSON export of your data. Email privacy@astrant.io.
• Unsubscribe: every email we send has a one-click unsubscribe link in the header (RFC 8058) and a visible unsubscribe link in the body.

Cookies

We don't set tracking cookies. We may set technical cookies for things like Cloudflare's bot-management and CSRF defenses, which are operational requirements, not analytics.

Children

Astrant is not directed at children. If you're under 16, please don't use this service.

International transfers

Our infrastructure runs on Cloudflare's global network. Your data may be processed in any region Cloudflare operates in, including the United States. Our email delivery (Resend) is US-based. If you're in the EU/UK and want stronger guarantees about data residency, email privacy@astrant.io.

Contact

• Privacy questions: privacy@astrant.io
• General contact: contact@astrant.io

Changes

We'll update this page if we materially change how we handle data. Material changes will also be announced via email to anyone with an active rescan opt-in.

This policy is provided in good faith as our v1 disclosure. We're committed to keeping it honest, plain-spoken, and short. [Subject to legal review pre-launch — not yet a substitute for a fully attorney-drafted policy.]