Privacy Policy

1. Introduction

bugX ("Company," "we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website at bugx.in and any associated services (collectively, the "Service").

Please read this Privacy Policy carefully. By using the Service, you consent to the practices described in this policy. If you do not agree with this policy, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide when using our Service:

• Account Information: When you register, we collect your email address, password (encrypted), and optionally your name.
• Payment Information: When you subscribe to a paid plan, payment processing is handled by Razorpay. We receive confirmation of payment but do not store your credit card details.
• Tool Input Data: Data you enter into our tools (URLs, text, JSON, etc.) for processing. This data is processed in real-time and is not permanently stored unless you have an account and choose to save results.
• Support Communications: Information you provide when contacting us for support.

2.2 Information Collected Automatically

When you access our Service, we automatically collect certain information:

Data Type	Purpose	Retention
IP Address	Rate limiting, abuse prevention, anonymous usage tracking	Hashed for anonymous users; not stored for logged-in users
User Agent	Browser compatibility, analytics	Aggregated only
Usage Data	Service improvement, feature analytics	90 days for detailed logs; aggregated indefinitely
Cookies	Authentication, preferences	Session or up to 7 days

2.3 Anonymous Usage Tracking

For users who are not logged in, we track usage through a fingerprint (hash of IP address and user agent). This allows us to enforce free usage limits. This fingerprint:

• Cannot be used to identify you personally
• Is automatically deleted after 24 hours
• Is stored separately from any personal information

3. How We Use Your Information

We use the collected information for the following purposes:

• Service Delivery: To provide, operate, and maintain our Service
• Account Management: To create and manage your account, process subscriptions
• Communication: To send service-related announcements, respond to inquiries
• Improvement: To analyze usage patterns and improve our Service
• Security: To detect and prevent fraud, abuse, and security threats
• Legal Compliance: To comply with legal obligations

4. Data Sharing and Disclosure

We may share your information only in the following circumstances:

4.1 Service Providers

We use trusted third-party services to operate our business:

• Razorpay: Payment processing (they have their own privacy policy)
• Cloud Infrastructure: Hosting and data storage
• Analytics: Aggregated, non-personal usage statistics

4.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect our rights, property, or safety.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

Cookie Type	Purpose	Duration
Essential Cookies	Authentication, security	Session / 7 days
Preference Cookies	Remember your settings	1 year
Analytics Cookies	Usage statistics (aggregated)	30 days

You can control cookies through your browser settings. Note that disabling essential cookies may prevent you from using certain features.

6. Data Security

We implement appropriate technical and organizational measures to protect your information:

• Encryption: All data transmitted between your browser and our servers is encrypted using TLS/SSL
• Password Security: Passwords are hashed using industry-standard algorithms (bcrypt)
• Access Controls: Limited employee access to personal data on a need-to-know basis
• Regular Audits: Security assessments and vulnerability testing
• Data Minimization: We only collect and retain data necessary for our Service

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

7. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes described in this policy:

• Account Data: Retained while your account is active; deleted within 30 days of account deletion request
• Usage Logs: Detailed logs retained for 90 days; aggregated statistics retained indefinitely
• Tool Input Data: Processed in real-time and not stored unless you explicitly save results
• Payment Records: Retained as required by law (typically 7 years for tax purposes)
• Anonymous Usage: Fingerprint data deleted after 24 hours

8. Your Privacy Rights

8.1 General Rights

All users have the following rights regarding their personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate personal data
• Deletion: Request deletion of your personal data
• Export: Request your data in a portable format
• Objection: Object to certain processing of your data

8.2 GDPR Rights (European Users)

If you are in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

• Right to withdraw consent at any time
• Right to lodge a complaint with a supervisory authority
• Right to restrict processing
• Right not to be subject to automated decision-making

Legal Basis for Processing: We process your data based on: (a) your consent, (b) contractual necessity, (c) legal obligations, or (d) legitimate interests.

8.3 CCPA Rights (California Residents)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information we collect and how it's used
• Right to delete your personal information
• Right to opt-out of the sale of personal information (we do not sell personal information)
• Right to non-discrimination for exercising your rights

8.4 Exercising Your Rights

To exercise any of these rights, please contact us at connect@bugx.in. We will respond to your request within 30 days. We may need to verify your identity before processing certain requests.

9. International Data Transfers

Our servers are located in India. If you access our Service from outside India, your information may be transferred to and processed in India. By using our Service, you consent to this transfer.

For users in the EEA, we ensure appropriate safeguards are in place for international data transfers, including standard contractual clauses where applicable.

10. Children's Privacy

Our Service is not intended for children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. We will take steps to delete such information.

11. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing any personal information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last updated" date
• Sending an email notification for significant changes (if you have an account)

Your continued use of the Service after any changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: connect@bugx.in
• General Inquiries: support@bugx.in
• Website: bugx.in

For GDPR-related inquiries, you may also contact your local data protection authority.