Legal
Privacy Policy
Last updated: March 2026
What We Collect
When you use BrandCert, we collect: the brand name you submit for scanning; your email address if you choose to unlock a full report or subscribe; and standard web analytics (page views, referrer, device type). We do not collect personal data beyond what you explicitly provide.
How We Use Your Data
Brand names are sent to third-party AI platforms (ChatGPT, Gemini, Claude, etc.) as part of the scanning process. These queries are factual questions about the brand — no personal data is included. Email addresses are used solely to deliver reports and service updates. We do not sell, share, or rent your data to third parties.
AI Platform Queries
Our scan process queries AI platforms through their public APIs (via OpenRouter). Each query asks factual questions about the brand you submit. These queries are subject to each platform's own terms of service and privacy policies. BrandCert does not control how AI platforms process or store these queries.
Data Retention
Scan reports are stored for 90 days and then automatically deleted unless you have an active paid subscription. Email addresses are retained until you unsubscribe or request deletion. You may request deletion of your data at any time by contacting us.
Cookies
We use essential cookies for language preferences and session management. We do not use advertising cookies or third-party tracking pixels. Analytics are privacy-respecting and do not track individual users across sites.
Your Rights
You have the right to: access the data we hold about you; request correction or deletion of your data; opt out of marketing communications; and export your scan reports. For GDPR, CCPA, or other privacy requests, contact hello@brandcert.com.
Security
We use HTTPS for all connections, encrypt data at rest, and limit access to personal data to essential personnel. Our infrastructure is hosted on Vercel (frontend) and Google Cloud Platform (backend, Singapore region).
Contact
For privacy inquiries: hello@brandcert.com