Privaro (“Privaro”, “we”, “us”, or “our”) provides a website, SaaS services, and a browser extension (“Privaro Peek”). This Privacy Policy explains how we collect, use, and protect information across our products and services.

1. Scope of This Policy

This Privacy Policy applies to:

• Our website and web applications

• Our SaaS platform and related services

• Privaro Peek, our browser-based website inspection extension

Where relevant, we explicitly distinguish between website/platform data and browser extension behavior.

2. Information We Collect

2.1 Information You Provide to Us (Website & Platform)

We may collect personal information when you voluntarily provide it, such as:

• Name, email address, company name

• Account registration details

• Billing and payment information

• Communications with us (support requests, inquiries)

2.2 Automatically Collected Information (Website & Platform)

When you use our website or SaaS platform, we may automatically collect:

• IP address

• Browser and device information

• Usage logs and interaction data (excluding session replay, keystroke logging, or behavioral recording technologies)

• Cookie and consent preferences

This information is used to operate, secure, and improve our services.

2.3 Privaro Peek Browser Extension (Important Clarification)

Privaro Peek operates as a diagnostic and inspection tool.

When a user initiates a scan, the extension processes website-level technical signals from the currently active page, which may include:

• Network request metadata

• Script and tracking technology identifiers

• Cookie names and attributes (not values)

• Browser storage keys

• Consent framework signals (e.g., CMP presence)

Data Usage & Limitations The browser extension does not:

• Collect personally identifiable information

• Track users across websites

• Collect browsing history

• Record keystrokes, mouse movements, or user behavior

• Identify or profile individual users

Any inspection occurs only on the active tab and only when the user interacts with the extension. Privaro Peek processes data locally to generate diagnostic reports. We do not use extension data for creditworthiness, lending qualification, or similar prohibited purposes.

2.4 Sensitive Data

We do not intentionally collect special categories of personal data as defined under GDPR Article 9.

3. How We Use Information

We process information to:

• Provide, operate, and improve our services

• Manage accounts, billing, and customer support

• Generate diagnostic reports and insights

• Maintain security, prevent fraud, and detect abuse

• Comply with legal and regulatory obligations

Legal Bases (GDPR)

Processing is based on one or more of the following:

• Consent

• Performance of a contract

• Legitimate interests (e.g., security, service improvement)

• Legal obligations

Automated Decision-Making

We do not use personal data for automated decision-making or profiling that produces legal or similarly significant effects concerning you (as defined in GDPR Article 22). Our "Trust Scores" are diagnostic indicators for information purposes only.

4. Cookies & Tracking Technologies

Website & Platform

We use cookies and similar technologies to:

• Enable essential functionality

• Measure usage and improve performance

• Deliver communications where consented

Users can manage cookies via browser settings or our consent banner.

Browser Extension

Privaro Peek does not set tracking cookies and does not use cookies for analytics or marketing. It may read cookie metadata on inspected websites solely for diagnostic purposes.

5. Sharing of Information

We may share information with:

• Service providers (e.g., cloud hosting, payment processors, analytics tools)

• Legal or regulatory authorities where required

• Successors in the event of a merger, acquisition, or restructuring

We do not sell personal data.

6. International Data Transfers

Data may be processed in the EU, the UK, the US, or other regions. Where applicable, we rely on:

• EU Standard Contractual Clauses (2021/914)

• UK International Data Transfer Addendum

• Swiss SCC Addendum

• EU–US Data Privacy Framework (where applicable)

7. Data Retention

We retain data only as long as necessary:

• Account and customer data: For the duration of the relationship and strictly for statutory periods required by law (e.g., tax or contract limitations).

• Marketing data: Until consent is withdrawn.

• Backups: Typically overwritten within approximately 90 days.

8. Your Rights

Depending on your location, you may have the right to:

• Access, correct, delete, or export your data

• Restrict or object to processing

• Withdraw consent at any time

• Lodge a complaint with a supervisory authority. In Ireland, the relevant authority is the Data Protection Commission (DPC) (www.dataprotection.ie).

To exercise these rights, contact: privacy@getprivaro.com

8.1 U.S. State Privacy Rights

If you are a resident of a U.S. state with applicable privacy laws (e.g., California, Colorado, Virginia), you may have additional rights, including:

• Right to Know what personal data is collected and why

• Right to Opt-Out of Sale or Sharing

• Right to Limit Use of Sensitive Information

• Right to Non-Discrimination

Privaro does not sell or share personal data for cross-context behavioural advertising.

9. Security

We apply appropriate technical and organisational measures, including:

• Encryption in transit and at rest

• Least-privilege access controls and MFA

• Monitoring, logging, and incident response procedures

10. Children’s Privacy

Our services are intended for business users and are not directed at individuals under 16. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted on our website with a revised “Last updated” date.

12. Contact & Controller Details

For the purposes of the GDPR, the Data Controller is:

Privaro The Black Church, St. Mary's Place Dublin 7, D07 P4AX Ireland Registration Number: 799226

For privacy-related inquiries, please contact: privacy@getprivaro.com