Am I Hackable?
← Back to scanner

Privacy Policy

Last updated: March 17, 2026

Who we are

AmIHackable is operated by Benji Peskine (“we”, “us”, “our”). Our website is amihackable.dev. You can reach us at benji@amihackable.dev.

What data we collect

  • Account data — When you sign in via Google, GitHub, or magic link, we receive your email address and display name. We store this in our authentication system (Supabase Auth).
  • Scan data — When you scan a URL, we store the URL, the scan results (security findings, score, grade), and a hashed version of your IP address. Scan results are linked to your account if you are signed in.
  • Usage data — We collect basic analytics (page views, referrer) to improve the product. We do not use third-party trackers or advertising cookies.

How we use your data

  • To provide and improve the scanning service
  • To send you your scan reports by email
  • To authenticate your account
  • To prevent abuse (rate limiting via hashed IP)

We do not sell your data. We do not share your data with third parties for marketing purposes.

Third-party services

  • Supabase — Database and authentication (hosted in EU).
  • Vercel — Hosting and deployment.
  • Brevo — Transactional emails (scan reports).
  • Cloudflare — CDN and Worker for scan execution.
  • Google / GitHub — OAuth authentication providers.

Data retention

Scan results are stored indefinitely while your account is active. Hashed IP addresses are stored for rate limiting and are not linked to your identity. You can request deletion of your account and all associated data at any time by emailing us.

Your rights

Under GDPR and applicable privacy laws, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Withdraw consent at any time

To exercise any of these rights, email benji@amihackable.dev.

Cookies

We use strictly necessary cookies for authentication (Supabase session). We do not use advertising or tracking cookies.

Changes to this policy

We may update this policy from time to time. We will notify you of significant changes by posting a notice on our website. Your continued use of the service after changes constitutes acceptance of the updated policy.