Privacy Policy

We collect the following types of information:

• Contact Information: Email address, name, company name when you request an audit or contact us
• Code Repositories: Temporary access to your codebase via GitHub private repository or ZIP file upload for audit purposes only
• Payment Information: Processed securely through Stripe. We do not store credit card details on our servers
• Communication Records: Email correspondence and consultation call notes related to your audit
• Usage Data: Basic analytics about how you use our website (via cookies)

We use your information exclusively for:

• Conducting security and revenue leak audits on your codebase
• Generating detailed audit reports with findings and recommendations
• Communicating with you about your audit, including strategy calls and follow-ups
• Processing payments for our services
• Improving our audit processes and tools
• Complying with legal obligations

We do not sell, rent, or share your data with third parties for marketing purposes.

Code Access: Your code is accessed securely during the audit process and permanently deleted immediately after audit completion and report delivery. Code never leaves our secure environment and is never stored permanently.

Audit Reports: We retain audit reports and communication records for up to 2 years after service completion for customer support and legal compliance purposes.

Account Information: Contact and payment information is retained for as long as necessary to provide our services and comply with legal obligations.

We use the following third-party services:

• Stripe: Payment processing. Your payment information is handled by Stripe according to their privacy policy
• Email Provider: We use a secure email service for communication. Email content is encrypted in transit
• GitHub: For accessing private repositories when you grant us collaborator access
• Analytics: Basic website analytics (cookies only, see Cookie Policy below)

If you are located in the European Economic Area (EEA), you have the following rights:

• Right to Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data (subject to legal obligations)
• Right to Restrict Processing: Request limitation of how we use your data
• Right to Data Portability: Request transfer of your data to another service provider
• Right to Object: Object to processing of your data for certain purposes

To exercise these rights, please contact us at korayt@loopside.cloud.

We implement industry-standard security measures to protect your data:

• All code access is done locally in a secure, isolated environment
• Code is encrypted during transfer and access
• No code is stored on cloud servers or shared storage
• All code is permanently deleted immediately after audit completion
• Access to code repositories is limited to audit team members only
• Regular security audits of our own systems
• Secure communication channels for all customer interactions

We use cookies only for basic website analytics to understand how visitors use our site. We do not use tracking cookies or advertising cookies. For more details, see our Cookie Policy.

Loopside operates from Austria. If you are located outside Austria, your data may be transferred to and processed in Austria. By using our services, you consent to this transfer. We ensure appropriate safeguards are in place to protect your data.

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date.

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us: