Skip to main content

Privacy Policy

Last updated: March 1, 2026

At QA Proof, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, browser plugin, and related services.

1. Information We Collect

1.1 Information You Provide

  • Account information: Name, email address, password, and profile details when you create an account
  • Billing information: Payment method, billing address, and company details for paid subscriptions
  • Project data: URLs, Figma file references, test configurations, and annotations you create within the platform
  • Communications: Messages you send through our support channels, feedback forms, or community forums

1.2 Information Collected Automatically

  • Usage data: Pages visited, features used, test runs, and interactions within the platform
  • Device information: Browser type, operating system, screen resolution, and device identifiers
  • Log data: IP address, access times, referring URLs, and error logs
  • Cookies and similar technologies: Session cookies, authentication tokens, and analytics trackers (see Section 6)

1.3 Information from Third Parties

  • Figma: Design file metadata and frame data when you connect your Figma account
  • GitHub / GitLab: Repository names and pull request metadata for integrations
  • OAuth providers: Basic profile information when you sign in with Google or GitHub

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the QA Proof platform
  • Process transactions and manage your subscription
  • Run design QA tests, capture screenshots, and generate comparison reports
  • Send transactional emails (account confirmations, test results, billing receipts)
  • Send product updates and marketing communications (with your consent)
  • Provide customer support and respond to inquiries
  • Detect and prevent fraud, abuse, and security incidents
  • Analyze usage patterns to improve our features and user experience
  • Comply with legal obligations

3. How We Share Your Information

We do not sell your personal information. We may share information in the following circumstances:

  • Team members: Project data is shared with members of your team/organization within QA Proof
  • Service providers: We work with trusted third parties for hosting (cloud infrastructure), payment processing, email delivery, and analytics
  • Integrations: When you connect third-party services (Figma, GitHub, GitLab, Jira, Slack), relevant data is shared as needed for the integration to function
  • Legal requirements: We may disclose information if required by law, regulation, legal process, or governmental request
  • Business transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction

4. Data Storage and Security

  • Your data is stored on secure servers within the European Union (EU)
  • We use industry-standard encryption (TLS 1.3) for data in transit and AES-256 for data at rest
  • Access to personal data is restricted to authorized personnel on a need-to-know basis
  • We conduct regular security audits and vulnerability assessments
  • Screenshots and test artifacts are stored in isolated, project-specific storage buckets

5. Data Retention

  • Active accounts: We retain your data for as long as your account is active
  • Test results: Retained according to your plan's retention period (7 days for Free, 90 days for Pro, custom for Enterprise)
  • After account deletion: Personal data is deleted within 90 days. Anonymized usage data may be retained for analytics
  • Billing records: Retained for 7 years as required by applicable tax and accounting regulations

6. Cookies and Tracking

We use cookies and similar technologies for:

  • Essential cookies: Authentication, session management, and security — required for the platform to function
  • Analytics cookies: Understanding how you use QA Proof so we can improve — you can opt out
  • Preference cookies: Remembering your settings, language, and display preferences

You can manage cookie preferences through your browser settings or our cookie consent banner. Disabling essential cookies may prevent you from using certain features.

7. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Correct inaccurate or incomplete personal data
  • Erasure: Request deletion of your personal data ("right to be forgotten")
  • Portability: Receive your data in a structured, machine-readable format
  • Restriction: Request that we limit how we process your data
  • Objection: Object to processing based on legitimate interests or for marketing purposes
  • Withdraw consent: Where processing is based on consent, you can withdraw at any time

To exercise any of these rights, contact us at privacy@qaproof.io. We will respond within 30 days.

8. GDPR Compliance

For users in the European Economic Area (EEA), we process personal data under the following legal bases:

  • Contract performance: Processing necessary to provide the QA Proof service
  • Legitimate interests: Analytics, security, and service improvement
  • Consent: Marketing communications and optional analytics cookies
  • Legal obligation: Tax records, fraud prevention, and regulatory compliance

9. International Data Transfers

If we transfer data outside the EEA, we ensure appropriate safeguards are in place, including:

  • EU Standard Contractual Clauses (SCCs)
  • Adequacy decisions by the European Commission
  • Binding Corporate Rules where applicable

10. Children's Privacy

QA Proof is not intended for use by individuals under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

11. Third-Party Links

Our platform may contain links to third-party websites and services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will:

  • Update the "Last updated" date at the top of this page
  • Notify you via email or an in-app notification
  • Where required by law, obtain your consent for material changes

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, contact us: