Privacy
We don't want your data. The whole product is structured to minimise it. This page tells you exactly what we collect, why, and how to make it stop.
What we collect
- Affiliate-click logs: anonymous click ID, retailer, product, timestamp. Hashed session ID for analytics. Never linked to personally-identifying information.
- Optional account data: if you sign up for price alerts, we store your email + alerts you've created. Supabase Auth handles password storage (we never see plaintext).
- API key usage: when you use the MCP server via a Bearer token, we log which tool you called + when (for rate limiting + abuse prevention). We do not log the query content.
- Product-analytics events (PostHog, server-side only). Six fixed event types —
search_performed,product_viewed,alert_created,alert_fired,waitlist_signed_up,mcp_tool_called— each carrying a daily-rotating hash of your user ID (if signed in) or a per-request random ID (if not), bucketed durations + result counts (never the raw numbers), and the route or tool name. We never send PostHog your search query text, product titles or IDs, email address, raw user UUID, IP address, or user-agent. Daily salt rotation means PostHog cannot link your activity across days into a long-term behavioural profile.
What we don't collect
- Marketing trackers (no Google Analytics, no Facebook Pixel, no third-party ad tags).
- Your actual product searches outside of our own (we don't see what you search for at the retailers we link to).
- Cross-site cookies or device fingerprints.
A note on agents
If you use Gridscoot through Claude, ChatGPT, Cline, or another MCP-compatible agent, we see the tool call, not the conversation. The agent vendor (Anthropic, OpenAI, etc) sees the conversation but not what we returned to it beyond what the agent decided to surface.
Affiliate disclosure
Gridscoot earns commission on purchases made through links on this site. The commission is paid by the retailer, not by you — your purchase price is the same whether you click through us or visit the retailer directly. We never adjust our rankings to favour retailers who pay higher commissions; ranking is algorithmic and based on price, in-stock status, delivery speed, and retailer freshness signals.
Affiliate networks involved: Commission Factory, Amazon Associates AU, eBay Partner Network. Read their respective privacy policies if you care; we're a referrer, not a processor.
Data retention
- Anonymous clicks
- Retained 365 days (auto-pruned). When you follow an outbound link, we log the product, retailer, destination URL, and the click timestamp. We hash your IP address with a salt that rotates every UTC day — the raw IP is never stored, and the hash is truncated to 16 hex characters so cross-day correlation is infeasible. We hash the user-agent string the same way. Anonymous clicks are never linked to your account; signed-in clicks store your user id so you can see your own click history if we add that surface later.
- Price history
- 365 days (auto-pruned).
- API call logs
- 7 days (auto-pruned).
- Account data
- Until you delete it — request via the contact path below. We'll delete your account within 30 days.
EU rights (GDPR)
If you access Gridscoot from within the European Union (or the United Kingdom under UK-GDPR), the General Data Protection Regulation gives you these rights regarding personal data we hold about you:
- Right of access (Art. 15) — confirm whether we process data about you and obtain a copy.
- Right to rectification (Art. 16) — correct inaccurate data.
- Right to erasure / “right to be forgotten” (Art. 17) — request deletion. We will respond within 30 days; some data may persist longer in encrypted backups for the operational retention window (max 35 days) before auto-pruning.
- Right to restriction (Art. 18) — pause processing while a dispute is resolved.
- Right to data portability (Art. 20) — receive your data in a structured, machine-readable format. For Gridscoot the realistic export is your account data (email + alerts) as JSON.
- Right to object (Art. 21) — object to processing based on our legitimate interest (e.g. anonymous affiliate-click logging for analytics).
- Right to withdraw consent (Art. 7) — where processing is based on consent (e.g. account-tied price alerts), withdraw at any time.
- Right to lodge a complaint (Art. 77) — with your national Data Protection Authority. Hungarian residents: the Nemzeti Adatvédelmi és Információszabadság Hatóság (NAIH) at
naih.hu. German residents: your Landesdatenschutzbeauftragter. Other EU/UK: see the EDPB member list.
To exercise any of these rights, write to the contact channel below. We do not require a specific form. Identity verification may be requested where strictly necessary to prevent disclosure to the wrong party.
California rights (CCPA / CPRA)
If you are a California resident, the California Consumer Privacy Act (as amended by the California Privacy Rights Act) gives you these rights regarding personal information Gridscoot holds about you:
- Right to know— what categories of personal information we collect, the sources, the business purpose, and the categories of third parties with whom we share it. The /privacy sections above (“What we collect” and “What we don't collect”) provide that disclosure.
- Right to delete personal information we have collected from you.
- Right to correct inaccurate personal information.
- Right to opt out of the sale or sharing of personal information for cross-context behavioural advertising. Gridscoot does not sell or share personal information for cross-context behavioural advertising. There is no “sale” or “sharing” under the CCPA/CPRA definitions to opt out of. The footer link “Do Not Sell or Share My Personal Information” is provided for completeness; following it confirms this position.
- Right to limit the use of sensitive personal information — we do not collect sensitive personal information categories (no government IDs, no precise geolocation, no biometric data, no health or financial data).
- Right to non-discrimination for exercising any of these rights.
To exercise these rights, use the contact channel below. We will verify your request and respond within the 45-day statutory window (extendable once by 45 days on notice).
Cross-border data transfers
Gridscoot is operated from Australia. Personal data you provide will be transferred to, processed in, and stored on infrastructure outside the European Economic Area and outside California:
- Supabase (database + auth) — current region is configurable; Gridscoot defaults to a region selected for latency, which may be inside or outside the EU depending on operational considerations at launch.
- Vercel (application hosting + edge) — global edge network; specific point-of-presence is request-dependent.
- Resend (transactional email) — US-based provider; email content transits via their infrastructure.
- PostHog (server-side analytics) — EU or US region depending on project configuration at launch. Self-hosting under consideration.
Where personal data is transferred from the EEA/UK to a third country, we rely on either (a) an adequacy decision of the European Commission for the destination country, or (b) Standard Contractual Clauses (SCCs) with the relevant subprocessor and supplementary measures appropriate to the data category. The subprocessor list is intentionally short — Gridscoot is structured to minimise the number of parties holding any personal data.
German residents: please also see the Impressum for the §5 TMG operator-identity disclosure required for services made available in Germany.
Limitations + best-effort
This policy describes our intended practices and the data we set out to minimise. It is not a service-level guarantee. The hashes, salts, and minimisation steps described here are best-effort engineering practices, not warranted technical controls. Implementation errors, third-party provider compromises, or events beyond our reasonable control could cause additional data to be collected or retained inadvertently.
Where that happens we will act on it consistently with our obligations under the Australian Privacy Act 1988 (Cth) and the Notifiable Data Breaches scheme. Your non-excludable rights under that legislation are not limited by this policy or by our Terms.
Contact
Questions, privacy requests, or account deletion: the contact email hello@gridscoot.com.auis reserved but the domain isn't registered yet (we're early-access). Until launch, the working channels are: (a) the waitlist signup — we read every reply; (b) GitHub issues on the public repo, linked from /about. We respond within 7 days.