Privacy Policy
Last updated:
MageArgus (“we”, “us”) is a security scanning product operated by W3ctrl Services. This policy explains what data we collect, why, and how we protect it.
1. Information we collect
- Account details — your name, email address, company and a securely hashed password when you create an account.
- Scan data — the URLs you scan and the resulting findings, scores and reports.
- Authentication data — if you sign in with Google, we receive your name, email and a Google account identifier.
2. How we use your information
- To create and secure your account and authenticate you.
- To run scans, store your results and show them on your dashboard.
- To send transactional email — verification codes, and (if enabled) scheduled scan reports and security-fix alerts.
- To improve the accuracy and coverage of the scanner.
3. Email communications
We verify every email address at sign-up. We send you account and security notifications such as verification codes, scan summaries and new-vulnerability alerts. You can opt out of non-essential email at any time.
4. Data sharing
We do not sell your data. We share it only with service providers strictly necessary to operate MageArgus (for example, email delivery), and where required by law.
5. Data security
Passwords are hashed using scrypt. Sessions use signed, HTTP-only cookies. Scan activity that touches a target actively (port scanning, aggressive probing) only runs against domains you have verified you own.
6. Data retention
We retain account and scan data while your account is active. You may request deletion of your account and associated data at any time.
7. Your rights
You may access, correct or delete your personal data, and request a copy of it. Contact us via w3ctrl.com.
8. Changes
We may update this policy from time to time. Material changes will be reflected by the “last updated” date above.