Privacy Policy

This Privacy Policy explains how DataBlue ("DataBlue", "we", "us", or "our") collects, uses, discloses, and safeguards your information when you visit our website, create an account, or use our Google SERP and web scraping API (collectively, the "Services"). We've tried to write it in plain language. If anything is unclear, email us — the address is at the bottom.

By using the Services, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Services.

1. Overview

DataBlue provides an API that returns structured search and web data. We are, first and foremost, an infrastructure provider: most of what flows through the Services is the content our customers ask us to fetch on their behalf, not personal data about them. We collect the minimum personal information needed to run accounts, bill fairly, keep the platform secure, and support you when something breaks.

• We do not sell your personal information.
• We do not use the contents of your API requests or responses to build advertising profiles.
• We apply data-protection principles — purpose limitation, data minimization, and security by design — across the platform.

2. Who We Are

DataBlue operates the Services and acts as the data controller for the account and website information described below. We are based in Madurai, Tamil Nadu, India, and serve customers globally. For personal data contained in the queries and target URLs you submit through the API, you are the controller and we act as your data processor — those arrangements are governed by our Data Processing Agreement.

3. Information We Collect

We collect the following categories of information:

• Account information. Your name, email address, password (stored only as a salted hash), and optional company or profile details you provide at sign-up.
• Billing information. Plan, subscription status, and transaction history. Card details are collected and stored by our payment processor (Stripe) — DataBlue never sees or stores full card numbers.
• API usage and request data. The queries, target URLs, parameters, API keys, timestamps, credit consumption, and response metadata associated with your calls. We process this to deliver results, meter usage, and prevent abuse.
• Technical and log data. IP address, browser type, device and operating system, referring pages, and diagnostic logs generated when you use the website or API.
• Cookies and analytics. Information collected through cookies and similar technologies, as described in our Cookie Policy.
• Communications. Messages you send us through support, email, or community channels, and your newsletter preferences.

4. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the Services and fulfill your API requests;
• Authenticate accounts, issue and rotate API keys, and meter credit usage;
• Process payments, manage subscriptions, and send billing notices;
• Detect, prevent, and respond to fraud, abuse, and security incidents;
• Provide customer support and respond to your questions, requests, and feedback;
• Improve and develop the Services, including measuring performance and reliability;
• Send service announcements and — where you have opted in — product updates and marketing emails (you can unsubscribe at any time); and
• Comply with legal obligations and enforce our terms.

5. Legal Bases for Processing

If you are in the European Economic Area, the United Kingdom, or a region with similar laws, we rely on the following legal bases to process your personal data:

• Performance of a contract — to provide the Services you sign up for and bill you for them;
• Legitimate interests — to secure the platform, prevent abuse, understand how the Services are used, and improve them, balanced against your rights;
• Consent — for optional marketing communications and non-essential cookies, which you can withdraw at any time; and
• Legal obligation — where we must process data to comply with applicable law.

6. How We Share Information

We do not sell your personal information. We share it only in the following limited circumstances:

• Subprocessors and service providers. Vetted vendors who help us run the Services — including cloud hosting and infrastructure, payment processing (Stripe), email delivery, error monitoring, and analytics. They may process data only on our instructions and under contractual confidentiality and data-protection obligations.
• Legal and safety. When required by law, subpoena, or government request, or where necessary to protect the rights, property, or safety of DataBlue, our users, or the public.
• Business transfers. In connection with a merger, acquisition, financing, or sale of assets, in which case we will notify you of any change in control or use of your personal data.

7. Data Retention

We keep personal data only for as long as needed for the purposes described in this policy. Account information is retained while your account is active and for a reasonable period afterward to meet legal, accounting, and dispute-resolution requirements. API request and response payloads are retained for a short operational window for debugging, abuse prevention, and support, then deleted or anonymized. You can request deletion of your account and associated personal data at any time, subject to obligations that require us to retain certain records.

8. How We Protect Your Data

We use technical and organizational measures appropriate to the risk, including encryption in transit (TLS), encryption of sensitive data at rest, hashed passwords, scoped and revocable API keys, access controls and least-privilege practices, and continuous monitoring. We are GDPR-ready and our SOC 2 Type II program is in progress. No method of transmission or storage is perfectly secure, so while we work hard to protect your data, we cannot guarantee absolute security.

9. International Data Transfers

DataBlue operates globally, and your information may be processed in countries other than the one in which you reside, including India and the regions where our cloud providers operate. Where we transfer personal data across borders, we rely on appropriate safeguards — such as the European Commission's Standard Contractual Clauses — to ensure your data receives an adequate level of protection.

10. Your Rights & Choices

Depending on where you live, you may have some or all of the following rights over your personal data:

• Access a copy of the personal data we hold about you;
• Correct inaccurate or incomplete data;
• Delete your personal data (the "right to be forgotten");
• Restrict or object to certain processing;
• Port your data to another provider in a structured, machine-readable format;
• Withdraw consent at any time where processing is based on consent; and
• Lodge a complaint with your local data-protection authority.

If you are a California resident, you also have rights under the CCPA/CPRA, including the right to know, delete, and correct your personal information and to opt out of its "sale" or "sharing" — which we do not do. To exercise any of these rights, contact us using the details below. We will not discriminate against you for exercising them.

11. Cookies & Tracking

We use essential cookies to run the website and keep you signed in, and — with your consent — analytics cookies to understand usage. You can control non-essential cookies through your browser or our consent controls. For details on what we set and why, see our Cookie Policy.

12. Children's Privacy

The Services are intended for developers and businesses and are not directed to individuals under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will update the "Last updated" date above and, where appropriate, notify you by email or through the Services. We encourage you to review this page periodically.

14. Contact Us

If you have questions about this Privacy Policy, want to exercise your rights, or wish to raise a concern, contact us at:

This Privacy Policy is provided for transparency and does not constitute legal advice.