SafeOVO

Privacy Policy

Last updated: May 7, 2026  ·  Effective date: May 7, 2026

1. Who We Are

SafeOVO, Inc. ("SafeOVO," "we," "us") operates the advisory cybersecurity service at safeovo.com. For privacy-related questions, contact us at support@safeovo.com.

2. Data We Collect

We collect the following categories of data:

  • Submitted content: URLs, message text, screenshots, and files you provide for review, along with any context you add.
  • Quick Check inputs (image mode): Screenshots you submit to Quick Check or the Ovo AI companion are sent to our AI provider for vision analysis and are not persisted to our database. We retain only a placeholder marker in your conversation history indicating that an image was attached.
  • Receipt Audit content: Subscription receipts you submit are processed for analysis and stored as part of your case record, subject to your retention setting.
  • Ovo AI conversation history: Your back-and-forth chat with Ovo (text only) is stored in your account so the assistant can recall past context. You can clear it from Settings or by deleting your account.
  • Phishing Dojo activity: Question attempts (correct/incorrect, timestamps) used to compute your level, daily drill, and streak. We do not store the question text under your record — only the question ID.
  • Ghost Test results: Findings from attack-surface scans you initiate. Stored on your account so you can revisit.
  • Elder Bridge data: If you (a Premium subscriber) pair a family member's phone, we store: the display name you assigned (e.g. "Mom"), pairing status, and tickets they forwarded. Forwarded content is owned by your account and follows the same retention rules. The senior's phone holds a long-lived bridge token; we store a hash of it for revocation purposes only.
  • Contact information: Name and email address provided when you contact us or create an account.
  • Submission metadata: Time of submission, plan tier, case reference ID, IP address (rate-limit + abuse), and user agent.
  • Authentication data: Hashed password, optional 2FA secret, recent login history (IP, timestamp), and mobile device push tokens for notifications.
  • Streak and engagement data: Daily activity counter and freeze credits for the Stay-Sharp feature.
  • Payment data: Processed by LemonSqueezy; we do not store card numbers. We retain payment logs (amount, plan, timestamp) for billing accuracy and tax/compliance retention obligations.
  • Usage data: Pages visited, referrer, and basic interaction data via a minimal analytics stub. We do not use third-party advertising trackers.

3. How We Use Your Data

We use collected data to:

  • Provide and fulfill the advisory service you requested
  • Communicate with you about your submissions and account
  • Detect and prevent fraud or abuse of the Service
  • Improve our assessment accuracy and service quality (in anonymized/aggregated form)
  • Comply with legal obligations

We do not sell your data. We do not use submission content for advertising targeting.

4. Data Retention

Submitted ticket content (URLs, messages, screenshots, files) is automatically scrubbed from resolved cases after the retention window you configure in Settings. The default is 90 days; you may set it as low as 30 days. The case-history record (status, risk level, recommendation) is preserved so you keep an audit trail of decisions, even after content is purged.

Ovo conversation history persists indefinitely while your account is active so the assistant has long-term context. Inactive conversations are pruned after 6 months. You may clear it from Settings at any time.

Quick Check screenshots are processed in transit to our AI provider and are not persisted to our database. We retain only the resulting verdict and a placeholder marker.

Phishing Dojo, Ghost Test, Decision Diary, and streak data are kept while your account is active.

Login history is kept for approximately 90 days for security review. Records older than that are removed in our weekly purge, so the worst-case window is roughly 97 days.

Payment logs are retained for up to 7 years to satisfy US/UK/EU tax and accounting record-keeping obligations, even after account deletion. They are unlinked from your identity where feasible.

Contact information associated with your account is retained while your account is active. You may request deletion at any time, subject to the payment-record retention noted above.

5. Data Sharing and Sub-processors

We share data with the following categories of processors, each under a data processing agreement, strictly for delivering the Service:

  • Vercel (US) — application hosting and edge runtime.
  • Neon (US/EU) — managed PostgreSQL database. Ticket content (including any screenshots or files you submit) is stored here; SafeOVO does not currently use a separate object-storage processor.
  • Groq (US) — AI inference for Quick Check, Ovo, and Receipt Audit. Submitted text and images are sent for processing; we do not authorise Groq to use the content for training.
  • LemonSqueezy (US) — payment processing and subscription management. Card data is handled directly by LemonSqueezy and never reaches our servers.
  • Resend (US) — transactional email delivery (welcome, password reset, case updates, daily Morning Brief, weekly digest).
  • Pusher (US/UK) — real-time delivery of ticket-thread chat messages.
  • Expo Push (US) — mobile push notifications via the device push tokens you opt in to providing.
  • Upstash (Global) — rate-limit counters keyed on IP or user ID. No content stored.
  • Have I Been Pwned (optional, when you initiate a Ghost Test that includes a breach lookup) — your email address is sent over TLS to query whether it appears in known breach datasets. HIBP retains the request only for service-operations purposes and does not use it for marketing.
  • VirusTotal (optional, when configured) — URLs you submit may be queried for known-bad reputation. URLs are not authored to be confidential.

We may also disclose data if required by law, court order, or to protect rights and safety. We will challenge overbroad requests where lawful to do so.

We do not sell personal data to data brokers. We do not share submission content with advertising or marketing platforms.

6. Your Rights (GDPR and Beyond)

If you are located in the EU/EEA or other jurisdictions with applicable data rights, you have the right to:

  • Access: Request a copy of personal data we hold about you.
  • Deletion: Request erasure of your personal data ("right to be forgotten").
  • Rectification: Request correction of inaccurate data.
  • Portability: Receive your data in a machine-readable format.
  • Objection: Object to certain types of processing.
  • Restriction: Request that processing be limited in certain circumstances.

You can self-serve Access and Portability via Dashboard → Settings → Export My Data, which produces a JSON dump of every record we hold against your account. You can self-serve Deletion via Dashboard → Settings → Delete Account.

For other requests, email support@safeovo.com with "Privacy Request" in the subject line. We will respond within 30 days.

6a. Elder Bridge — How Family Data Flows

Elder Bridge is a Premium feature that lets you (the "owner") pair a family member's phone (the "senior") so they can forward suspicious content to your case queue. Important boundaries:

  • The senior does not have a SafeOVO account. They never see verdicts directly — you do, and you relay.
  • The display name you assign is visible only to you and to our support staff if you submit a help request.
  • Tickets forwarded by the senior's phone are stored under your account and follow your retention setting.
  • The senior's phone holds a long-lived bridge token in secure device storage. We hold a SHA-256 hash for revocation only — we cannot use it to read the senior's phone.
  • If you regenerate the pairing or revoke the member, the old token immediately stops working.
  • You should obtain the senior's informed consent before pairing their phone.

7. Security Measures

All data is transmitted over TLS. Access to personal data is restricted to authorized personnel. We apply minimal-retention practices to limit exposure. No security measure is perfect, and we cannot guarantee absolute security, but we implement reasonable technical and organizational safeguards.

8. Cookies

We use a minimal set of cookies: a session cookie for the contact form and a basic analytics stub. We do not use third-party advertising cookies or cross-site tracking. You may disable cookies in your browser; this may affect form functionality.

9. Children

Our Service is not directed to children under 13 (or 16 in the EU where applicable). We do not knowingly collect data from children. If you believe a child has submitted data, contact us for deletion.

10. Changes to This Policy

We may update this policy. We will notify you by email or site notice at least 14 days before material changes. Continued use after the effective date constitutes acceptance.

11. Contact

For privacy requests or questions: support@safeovo.com · [Address, City, State, ZIP]