Privacy Policy

This Privacy Policy describes how Maveda LLC, doing business as "Beacon" and "Beacon Accessibility" ("Beacon," "we," "us," or "our"), collects, uses, discloses, and protects information when you use our web accessibility testing and compliance platform available at beaconaccessibility.com (the "Service"). This policy applies to all users of our Service, including free and paid subscribers.

By accessing or using our Service, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

EXECUTIVE SUMMARY

This Privacy Policy is designed to be transparent about our data collection and usage practices. Key points:

1. INFORMATION WE COLLECT

1.1 Account Information

• Full name and email address
• Password (encrypted)
• User role (Developer, Compliance, Product Manager)
• Organization membership (if applicable)

1.2 Payment Information (via Stripe)

• Billing email and address
• Payment method metadata (last 4 digits, expiration date)
• Subscription tier and status

Note: Full credit card numbers are never stored by Beacon; handled exclusively by Stripe.

1.3 Scan Data

• URLs you scan for accessibility
• WCAG compliance level selected
• Scan results and violation reports
• Scanned website content (retained for 90 days only)

1.4 Analytics and Usage Data

• Event tracking: Page views, clicks, form interactions
• Session recordings: Mouse movements, scrolling, clicks (90-day retention)
• User properties: Email, subscription tier, role

Opt-out available: Enable Do Not Track in browser

1.5 Email Tracking

• Email open and click tracking
• Delivery status

Opt-out available: Contact privacy@beaconaccessibility.com

1.6 Error Tracking

• Error logs and stack traces
• Browser/device information
• User ID (if logged in at time of error)
• 90-day retention

2. HOW WE USE YOUR INFORMATION

We use collected information for:

3. HOW WE SHARE YOUR INFORMATION

3.1 We Do NOT:

3.2 We DO Share With:

Third-Party Processors (Subprocessors) as necessary to provide the Service:

4. DATA RETENTION

All of the foregoing subject to extenuating circumstances.

5. COOKIES AND TRACKING

Opt-Out: Enable "Do Not Track" in browser settings or contact us.

6. SECURITY MEASURES

No system is 100% secure. You are responsible for:

• Keeping your password confidential
• Enabling two-factor authentication (if available)
• Logging out on shared computers

7. INTERNATIONAL DATA TRANSFERS

All data is stored and processed in the United States.

If you access from outside the US: Your data will be transferred to and processed in the United States. By using the Service, you consent to this transfer.

8. CHILDREN'S PRIVACY

Beacon is not intended for individuals under 18. We do not knowingly collect information from anyone under 18.

If you believe a child under 18 has created an account: Contact privacy@beaconaccessibility.com immediately, and we will delete the account within 48 hours.

9. DO NOT TRACK (DNT)

We honor Do Not Track browser signals. This feature is currently active and implemented in our analytics system (PostHog).

How to enable DNT:

• Chrome: Settings > Privacy > Send "Do Not Track" request
• Firefox: Settings > Privacy > Send "Do Not Track" signal
• Safari: Preferences > Privacy > Ask websites not to track me

10. DATA BREACH NOTIFICATION

If a breach occurs affecting your data:

We will notify you as soon as practical and/or legally required via email to your account address and/or mail (if email unavailable).

11. STATE-LEVEL PRIVACY RIGHTS

This section provides notice and specific information to consumers who may be covered by a state-level data privacy laws, including information required by the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively "CCPA"), the Virginia Consumer Data Protection Act, the Colorado Consumer Privacy Act, the Connecticut Data Privacy Act, and similar acts.

We do not disclose your data in exchange for money. As provided in our Terms of Service, use of the Service by anyone under 18 years of age is strictly prohibited. Consequently, we do not knowingly obtain, retain, or disclose information regarding individuals under 18 years of age. We also do not use or disclose sensitive personal information.

In addition to the rights described above, certain residents may also, subject to certain exceptions, request us to provide information about how we have used and shared your personal information, if we have, as well as the right to request correction of inaccurate personal information, and the right to confirm whether we are processing your personal information. Please submit these requests for information, as well as requests to access, correct, or delete your information through your privacy settings, or by e-mailing us at privacy@beaconaccessibility.com. If you are dissatisfied with our response, you may have the right to appeal our decision regarding your request by contacting us at privacy@beaconaccessibility.com. You may also have the right to lodge a complaint with the appropriate oversight body. For more information, please e-mail: privacy@beaconaccessibility.com. Consistent with applicable privacy laws, we will not treat you differently for exercising your rights under these laws.

Your authorized agent may exercise your data protection rights on your behalf by e-mailing us at privacy@beaconaccessibility.com. We may still require you to directly verify your identity and confirm that you have provided the authorized agent permission to submit the request. Whether you submit your request directly or through an authorized agent, generally, the only means we have to verify your identity is for you to respond to a specific e-mail from our support team from the e-mail address associated with your Account or to click a confirmation or similar button in a specific e-mail to the e-mail address associated with your Account.

In addition to previously identified uses, we may collect, use, and disclose personal information for the following purposes:

1. to provide and improve our Service and its features and functionality;
2. to evaluate use of our Service for our business purposes and to provide and improve our products and services;
3. to personalize your experience;
4. to prevent fraud and to maintain a quality experience for our business purposes or legal reasons (for example, the Terms of Service);
5. to enforce compliance with our agreements with you and comply; to comply with our legal obligations; to prosecute or defend a lawsuit, arbitration, or similar legal proceeding; to respond to lawful requests by public authorities (including national security or law enforcement requirements); and
6. to perform research and analysis for our internal business purposes.

Submit requests: privacy@beaconaccessibility.com

12. CHANGES TO THIS POLICY

We may update this Privacy Policy to reflect:

• Legal or regulatory changes
• New Service features
• Changes to subprocessors
• Security improvements

How we notify you: Via email and/or mail and/or by publication on our Platform and/or website. Your continued use of the Services is consent to the new terms.

Right to object: Delete your account before changes take effect if you disagree.

13. CONTACT INFORMATION

Privacy Inquiries & Rights Requests

Email: privacy@beaconaccessibility.com

14. AUTOMATED DECISION-MAKING

We do NOT use automated decision-making or profiling that produces legal effects or significantly affects you.

Limited automation:

• Subscription tier enforcement (based on business rules)
• Fraud detection flagging (human review before action)
• Content moderation flagging (human review before action)

If we introduce AI in the future: We will update this policy and provide opt-out options (or other options that may be legally required) and ensure human review for any significant decisions that may impact you.

15. REFERRAL PROGRAM (FUTURE FEATURE)

When launched, we will collect: Email addresses of people you refer and reward fulfillment data.

How it will be used: For tracking successful referrals and awarding credits/rewards, as well as to prevent fraud.

Opt-out: Stop sharing referral links; referred individuals can request relationship removal.

ACKNOWLEDGMENT AND ACCEPTANCE

By creating an account, accessing our Service, or continuing to use our Service after updates to this Privacy Policy, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

If you do not agree with any part of this Privacy Policy, you must discontinue use of the Service and delete your account.