Privacy Policy
Last updated: 2026-05-27
This page explains what personal data WebAuditFix collects, why, how long we keep it, and your rights under the EU General Data Protection Regulation (GDPR) and the Irish Data Protection Act 2018.
1. Who is the data controller
Data Vision IT Consulting LimitedKilbride, Wicklow, Ireland
Companies Registration Office (CRO) number: 748035
VAT number: IE4212283KH
Privacy contact: [email protected]
We have not appointed a Data Protection Officer; the volume and nature of the personal data we process does not require one under GDPR Article 37. Privacy enquiries can be sent to the address above and will be answered by a member of Data Vision IT Consulting Limited.
2. What data we collect
WebAuditFix does not require an account, does not collect names, email addresses, payment details, or analytics about your browsing. Specifically:
| Data | Source | Purpose |
|---|---|---|
| The URL you submit for audit | Your form submission | To perform the audit and display the results to you |
| The audit results we compute (scores, per-check status, technical detail) | Generated by our scanner | To display results and provide a shareable result link |
| Your IP address | Your network connection | Rate limiting — to prevent abuse of the service |
| A session cookie | Set in your browser by our server | Cross-site request forgery (CSRF) protection on the audit form |
We do not use third-party analytics, advertising trackers, social plugins, or fingerprinting. We do not embed third-party scripts in the audit pages.
3. Legal basis for processing
We rely on the legal bases set out in GDPR Article 6:
- Performance of a service you requested (Art. 6(1)(b)) — for processing the URL you submit and returning the audit results.
- Legitimate interests (Art. 6(1)(f)) — for IP-based rate limiting and CSRF protection. Our legitimate interest is keeping the service available and resistant to abuse; we balance this against your privacy by not storing IP addresses in our database and by using strictly necessary session cookies only.
4. How long we keep it
| Data | Retention |
|---|---|
| Submitted URLs and audit results |
Kept indefinitely while the service runs, so the
/results/<id> link remains usable.
You can request deletion at any time — see Section 7.
|
| IP address (rate-limit counter) | Held in our cache for the rate-limit window (one hour) and then expires automatically. Not written to our database. |
| Session cookie | Expires when you close your browser. Not associated with a stored record on our side beyond signature verification. |
| Web server access logs | Held by our hosting provider for up to 14 days for operational and security purposes (debugging, abuse investigation). |
5. Who we share it with
We do not sell, rent, or share personal data with third parties for marketing or advertising. The only places your data goes are:
-
The URL you submit. Our scanner makes HTTP requests to
the host you ask us to audit (your homepage, plus standard paths like
/robots.txt,/llms.txt, and/security.txt). The audited server will see our IP address and our User-Agent string (WebAuditFixBot/1.0 (+https://webauditfix.com/bot)). - Our hosting provider. The server hosting WebAuditFix processes incoming requests on our behalf as a data processor.
- Regulators or law enforcement if we are legally compelled — none has happened to date and we will challenge overly broad requests where we can.
6. International transfers
Personal data is processed within the European Union (Ireland). We do not transfer personal data outside the European Economic Area.
7. Your rights
Under GDPR you have the following rights:
- Access — get a copy of the personal data we hold about you.
- Rectification — ask us to correct inaccurate data.
- Erasure — ask us to delete data we hold (e.g. a specific scan record).
- Restriction — ask us to limit how we process your data.
- Portability — get the data you provided in a portable format.
- Objection — object to processing based on legitimate interests.
- Complaint to the supervisory authority — the Irish Data Protection Commission.
To exercise any of these rights, email [email protected]. Please include the scan ID (visible in the URL of the results page) if your request relates to a specific audit.
8. Automated decision-making and AI training
WebAuditFix runs a fixed, deterministic set of technical checks against the URL you submit. There is no profiling and no decision that produces legal or similarly significant effects within the meaning of GDPR Article 22.
We do not use submitted URLs or audit results to train machine-learning models, and we do not pass them to third-party AI services.
9. Security
We use HTTPS with current TLS, deploy with a reverse proxy and least-privileged service users, and apply security headers recommended by current best practice (in fact, our own scanner audits the same signals). Despite this, no service is perfectly secure; please report any vulnerabilities responsibly to [email protected].
10. Changes to this policy
We may update this policy as the service changes. The "Last updated" date at the top of this page reflects the most recent revision. Material changes that affect how we process personal data will be reflected here before they take effect.
11. Contact
Questions, requests, or complaints: email [email protected] or write to Data Vision IT Consulting Limited, Kilbride, Wicklow, Ireland.