BrandparserInvite Only

Privacy Policy

Last updated: February 17, 2026

This Privacy Policy explains how Brandparser ("we", "us", "our") collects, uses, and protects your personal information when you use our service. We are committed to handling your data responsibly and in compliance with applicable data protection law, including the UK GDPR.

1. Information We Collect

We collect information in the following ways:

Information you provide

  • Account information: your name and email address when you register or sign in.
  • Payment information: billing details, processed securely by Stripe. We do not store your full card number.
  • Communications: messages you send us via email or support channels.

Information collected automatically

  • Usage data: URLs you submit for analysis, API requests made, and results generated.
  • Log data: IP address, browser type, device information, and pages visited, used for security and performance monitoring.
  • Cookies: we use essential cookies required to keep you signed in and maintain your session. We do not use tracking or advertising cookies.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and improve the Brandparser service.
  • Process payments and manage your subscription.
  • Respond to your enquiries and provide customer support.
  • Send transactional emails (account activity, billing receipts, API key notifications).
  • Monitor for abuse, fraud, and security incidents.
  • Comply with legal obligations.

We do not sell your personal data to third parties. We do not use your submitted URLs or analysis results to train AI models without your explicit consent.

3. Legal Basis for Processing (UK/EU Users)

We process your personal data on the following legal bases:

  • Contract: to provide the Service you have signed up for.
  • Legitimate interests: to operate our business, prevent fraud, and improve our service.
  • Legal obligation: to comply with applicable laws and regulations.
  • Consent: for any optional marketing communications (you may withdraw at any time).

4. Third-Party Services

We use the following trusted third-party providers to operate our service:

  • WorkOS — authentication and user management. Your login credentials are managed by WorkOS.
  • Stripe — payment processing. Stripe handles all payment card data under their own privacy policy and PCI-DSS compliance.
  • Cloudflare — infrastructure, hosting, and content delivery. Data is processed on Cloudflare's global network.
  • Vercel — hosting for the web application frontend.
  • Resend — transactional email delivery. Messages sent via the contact form or triggered by account activity are routed through Resend. Only the data necessary to deliver the email (sender name, email address, and message content) is transmitted.
  • Third-party AI providers — parts of our brand analysis pipeline use external AI services to interpret and extract information from websites you submit. Content from submitted URLs may be passed to these providers as part of generating your results. You should not submit URLs containing sensitive, confidential, or personal data you would not wish to be processed by a third-party AI system.

Each provider processes data under their own privacy policies and appropriate data processing agreements. We do not share your personal account data with any other third parties except as required by law.

5. Data Storage and Transfers

Our infrastructure is primarily hosted in the European Union. Some data may be processed by our third-party providers on servers outside the UK or EU. Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions.

6. Data Retention

We retain your account data for as long as your account is active and for a reasonable period afterwards to comply with legal obligations. Analysis results are retained to provide the service and may be deleted upon account closure. Payment records are retained for the period required by tax and financial regulations.

You may request deletion of your account and associated data at any time by contacting us.

7. Your Rights

Under UK and EU data protection law, you have the right to:

  • Access the personal data we hold about you.
  • Rectify inaccurate or incomplete data.
  • Erase your personal data ("right to be forgotten"), subject to legal retention requirements.
  • Restrict or object to processing in certain circumstances.
  • Data portability — receive your data in a structured, machine-readable format.
  • Withdraw consent at any time where processing is based on consent.
  • Lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

To exercise any of these rights, contact us at privacy​[at]​brandparser.com. We will respond within 30 days.

8. Security

We implement appropriate technical and organisational measures to protect your data, including encryption in transit and at rest, access controls, and regular security reviews. No method of transmission over the internet is completely secure; we cannot guarantee absolute security but take reasonable precautions to protect your information.

9. Children

Brandparser is not directed at children under the age of 18. We do not knowingly collect personal data from anyone under 18. If you believe we have inadvertently collected such data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by a prominent notice in the Service. The "Last updated" date at the top of this page reflects the most recent revision.

11. Contact

For any questions or concerns about this policy, or to exercise your data rights, contact us at privacy​[at]​brandparser.com.