Privacy Policy

1. Who we are

Vendor Trace is operated by LINA Solutions AB, a company registered in Sweden. We act as the data controller for personal data processed through this service.

Contact: info@linasolutions.se

2. What we collect

When you create an account, we collect:

• Your name and email address (for authentication)
• Scan requests you submit (domain names)
• Scan results generated by the service

We do not collect payment information directly. Payments are processed by our payment provider.

3. How we use your data

• To provide and improve the Vendor Trace service
• To authenticate you and manage your account
• To enforce plan limits and billing
• To send service-related communications (e.g. password resets)

We do not sell your data or use it for advertising.

4. What we scan

Vendor Trace analyses publicly available information about domains you submit: DNS records, TLS certificates, HTTP headers, and publicly accessible web resources. We do not access private systems, authenticate to any service, or perform intrusive testing.

5. Data retention

Scan results are retained for 30 days after creation. Account data is retained until you delete your account.

6. Where data is processed

All data is processed and stored within the EU (AWS eu-north-1, Stockholm). We do not transfer personal data outside the EU/EEA.

7. Your rights

Under GDPR, you have the right to access, correct, delete, or export your personal data. To exercise these rights, contact us at info@linasolutions.se.

8. Changes to this policy

We may update this policy from time to time. Material changes will be communicated via email or an in-app notice.