This policy describes what data ShotPilot collects, why, and how long we keep it. We try to collect the minimum needed to run the service.
What we collect
- Account data: email and authentication tokens, via Clerk. We do not store passwords.
- Billing data: customer ID and subscription state, via Stripe. Card details are processed by Stripe and never reach our servers.
- Usage logs: timestamp, target URL, response status, response time, image format, viewport, cache hit/miss, and the API key ID. Used for billing, abuse detection, and debugging.
- Screenshot output: cached in Cloudflare R2, keyed by a hash of the request parameters, for the TTL you specify (max 7 days).
What we do not collect
- Cookies for advertising or cross-site tracking.
- Browser fingerprints.
- The contents of pages you screenshot, beyond the rendered image.
How we use data
- Operating the API and enforcing quotas.
- Billing and invoicing.
- Detecting abuse — SSRF attempts, scraping of disallowed targets, etc.
- Aggregate analytics on traffic volume and feature usage.
Sharing
We do not sell your data. We share only with the subprocessors needed to run the service:
- Clerk — authentication
- Stripe — payments
- Supabase — database hosting
- Cloudflare R2 — screenshot caching
- Vercel — application hosting
Retention
- Usage logs: 90 days.
- Cached screenshots: until TTL expiry or 7 days, whichever is sooner.
- Account and billing records: for the life of the account plus 7 years for tax purposes.
Your rights
Email hello@shotpilot.dev to request access, export, correction, or deletion of your data. We will respond within 30 days.
Security
All connections use HTTPS. API keys are stored as SHA-256 hashes. Access to production databases is limited and logged. We rotate secrets on suspected exposure.