☀️ 🌙

Privacy Policy

Last Updated: December 2, 2025

DNS Science is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your information.

1. Information We Collect

Account Information

When you create an account, we collect:

  • Email address
  • Full name
  • Password (encrypted)
  • Company name (optional)
Usage Data

We automatically collect:

  • API requests and responses
  • IP addresses
  • Browser type and version
  • Pages visited and time spent
  • Search queries within the platform
Payment Information

Payment processing is handled by Stripe. We do not store full credit card numbers. We receive only:

  • Last 4 digits of card
  • Card brand (Visa, Mastercard, etc.)
  • Expiration date
  • Billing address

2. How We Use Your Information

We use collected information for:

  • Service Delivery: Providing DNS intelligence and analysis
  • Account Management: Creating and maintaining your account
  • Billing: Processing payments and managing subscriptions
  • Communication: Sending service updates, security alerts, and marketing (opt-out available)
  • Improvement: Analyzing usage patterns to improve our services
  • Security: Detecting and preventing fraud and abuse
  • Legal Compliance: Meeting regulatory requirements

3. DNS Data Collection

DNS Science collects publicly available DNS data from various sources including:

  • Public DNS queries and responses
  • Certificate Transparency logs
  • WHOIS and RDAP databases
  • Public DNS zone files
  • SSL/TLS certificate data

This data is aggregated, analyzed, and made available through our platform. We do not collect private DNS queries from users' networks without explicit consent.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share data with:

Service Providers
  • Stripe: Payment processing
  • AWS: Cloud infrastructure and hosting
  • Email providers: Transactional and marketing emails
Legal Requirements

We may disclose information if required by law, such as:

  • In response to valid legal requests
  • To protect rights, property, or safety
  • In connection with legal proceedings
  • To enforce our Terms of Service

5. Data Security

We implement industry-standard security measures:

  • Encryption: TLS/SSL for data in transit
  • Password Security: Bcrypt hashing for stored passwords
  • Access Controls: Role-based permissions and authentication
  • Monitoring: Continuous security monitoring and logging
  • Infrastructure: Secure AWS infrastructure with VPCs and security groups
  • Database: Connection pooling with PgBouncer and encrypted connections

6. Cookies and Tracking

We use cookies and similar technologies for:

  • Session Management: Keeping you logged in
  • Preferences: Remembering your settings
  • Analytics: Understanding how you use our service
  • Security: Detecting suspicious activity

You can control cookies through your browser settings. Disabling cookies may limit functionality of the Service.

7. Your Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate information
  • Deletion: Request deletion of your account and data
  • Portability: Receive your data in a structured format
  • Opt-out: Unsubscribe from marketing communications
  • Object: Object to certain data processing activities

To exercise these rights, contact us at privacy@dnsscience.io

8. Data Retention

We retain your personal information for as long as your account is active or as needed to provide services. After account deletion:

  • Personal data is deleted within 30 days
  • Billing records may be retained for up to 7 years for legal compliance
  • Aggregated, anonymized data may be retained indefinitely
  • API logs are retained for 90 days

9. Children's Privacy

DNS Science is not directed to children under 13 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

11. California Privacy Rights (CCPA)

California residents have additional rights under the CCPA:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of sale of personal information
  • Right to deletion of personal information
  • Right to non-discrimination for exercising CCPA rights

Note: We do not sell personal information.

12. GDPR Compliance (European Users)

For users in the European Economic Area (EEA):

  • Legal basis for processing: Consent, contract, legitimate interests
  • Right to withdraw consent at any time
  • Right to lodge a complaint with supervisory authority
  • Data Protection Officer contact: dpo@dnsscience.io

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Service. The "Last Updated" date at the top indicates when changes were last made.

14. Contact Us

For privacy-related questions or concerns:

Email: privacy@dnsscience.io
Legal: legal@dnsscience.io
Website: www.dnsscience.io

Terms of Service Contact Us