Back to home

Privacy Policy

How Santinela collects, uses, and protects your data.

Last updated: April 2026

1. Who we are

Santinela is a privacy-focused network security application. Our mission is to help you detect surveillance devices on your network — not to surveil you. This policy explains what data we collect, why, and how you can control it.

2. Data we collect

Account data

When you create an account we collect your email address and a hashed password. We use this only for authentication and, when needed, for transactional emails (verification, password reset).

Scan results

Network scans are performed entirely on your device. Scan results are stored locally by default. If you opt into cloud backup, scan summaries (device counts, threat categories, timestamps) are stored on our servers — never raw network traffic or payload data.

Usage analytics

We collect anonymous, aggregated usage events (e.g., "scan started", "threat detected") to understand how the app is used and improve it. These events contain no personally identifiable information and cannot be linked back to you.

Crash reports

Crash reports are opt-in. If you enable them, we receive anonymised stack traces to help us fix bugs.

3. What we do NOT collect

  • Contents of network packets or traffic
  • Precise geolocation
  • Contacts, photos, or files on your device
  • Any data for advertising profiling

4. Advertising (Free tier)

The free tier is supported by contextual, privacy-respecting ads served by EthicalAds or Carbon Ads. These providers do not use tracking cookies, cross-site profiling, or behavioural targeting. No data is shared with Google, Meta, or similar ad networks. Premium subscribers see no ads.

5. Data sharing

We do not sell, rent, or trade your personal data. We may share data with:

  • Resend — for transactional email delivery (email address only)
  • Cloudflare — our infrastructure provider (processes requests on our behalf)

All processors are contractually bound to process your data only on our instructions.

6. Data retention

Account data is retained while your account is active. You can delete your account at any time from the app settings, which triggers permanent deletion of all associated data within 30 days. Anonymous analytics data has no identifiable component and is retained indefinitely in aggregate form.

7. Your rights

Depending on your jurisdiction you may have the right to access, correct, export, or delete your personal data. To exercise these rights, contact us at privacy@santinela.app. We will respond within 30 days.

8. Security

All data in transit is encrypted with TLS 1.2+. Passwords are hashed with bcrypt before storage. We follow responsible disclosure practices — see our Security page for details.

9. Children

Santinela is not directed at children under 13. We do not knowingly collect data from minors.

10. Changes to this policy

We may update this policy as the product evolves. Significant changes will be communicated via email or in-app notification. Continued use after the effective date constitutes acceptance.

11. Contact

Questions about this policy? Email privacy@santinela.app.