Privacy Policy
This Privacy Policy explains how Package Security Monitor (“we”, “our”, or “us”) collects, uses, and protects information when you use the Service.
1. Information We Collect
We may collect the following information:
- Email address and account information
- Monitored package and dependency metadata
- Usage and diagnostic information
- Security and authentication logs
2. How We Use Information
We use collected information to:
- Provide and operate the Service
- Send vulnerability alerts and account notifications
- Improve reliability, performance, and security
- Prevent abuse and unauthorized access
3. Data Sharing
We do not sell personal information.
Information may be shared with service providers involved in hosting, infrastructure, email delivery, payment processing, or analytics as necessary to operate the Service.
4. Data Retention
We retain information only as long as reasonably necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements.
5. Security
We implement reasonable administrative and technical safeguards to protect information. However, no system or transmission method can be guaranteed completely secure.
6. Cookies and Authentication
The Service may use cookies or authentication tokens to maintain sessions and improve user experience.
7. Third-Party Services
The Service may rely on third-party providers for infrastructure, analytics, email delivery, or payment processing. Those providers may process information according to their own privacy policies.
8. Changes to This Policy
We may update this Privacy Policy periodically. Continued use of the Service after updates become effective constitutes acceptance of the revised policy.
9. Contact
For privacy-related questions, contact: [email protected]