Security Policy

1. Introduction

DataScrap Studio prioritizes the security of your data and operations. This policy outlines the measures we take to protect your information within our desktop application and your responsibilities as a user.

2. Local Data Protection

• No Cloud Storage: All data extracted through DataScrap Studio resides exclusively on your computer. We never transmit, store, or access your datasets.
• Encryption:
  • API Keys: Credentials (e.g., BrightData keys) are encrypted using AES-256 and stored locally.
  • Exported Files: Data exported as CSV/JSON is unencrypted by default. Use third-party tools to encrypt sensitive exports.

3. Secure Development Practices

• Code Audits: Regular security reviews of the application code.
• Updates: Automatic security patches delivered through free lifetime updates.
• Vulnerability Reporting: Users can report security flaws to security@datascrap.studio.

4. User Responsibilities

• System Security: Keep your operating system and antivirus software updated.
• API Key Management: Never share API keys publicly. Rotate keys periodically via your provider dashboard (e.g., BrightData).
• Backups: Regularly back up extracted data stored locally on your device.

5. Third-Party Integrations

• BrightData: API usage is subject to BrightData’s Security Practices.
• Payment Processors: Gumroad/PayPal handle transactions securely; we do not store payment details.

6. Incident Response

• Breach Notification: If a vulnerability impacts your local data mail us to support@datascrap.studio , we will provide mitigation steps.
• User Support: Contact support@datascrap.studio for urgent security concerns.

7. Compliance

• GDPR: Data remains under your control; we do not process EU user data.
• Ethical Scraping: Built-in rate limiting and robots.txt compliance to prevent abusive extraction.

8. Updates to This Policy

We may revise this policy to reflect new security practices. Continued use of DataScrap Studio constitutes acceptance of updates.

9. Contact Us

For security-related inquiries or vulnerability reports:
Email: security@datascrap.studio