Privacy Policy
Last updated: March 19, 2026
1. Who We Are
Shypd ("we," "us," "our") operates the website at shypd.ai. This Privacy Policy explains how we collect, use, and protect your information when you use our platform.
2. Information We Collect
Information You Provide
- Account registration: name, email address
- Tool submission and claim requests: name, email, tool URL, proof of ownership
- Contact form submissions: name, email, message content
- Payment information for tool submissions/claims (processed securely via Stripe — we never store your card details)
Information Collected Automatically
- Browser type and version
- Pages visited and time spent
- Search queries on Shypd
- Referring URL
- IP address (used for security and anonymized for analytics)
- Device type and screen resolution
- Interaction events (clicks, scrolls — for product improvement)
3. How We Use Your Information
- To provide and improve the Shypd platform
- To process tool claim and verification requests
- To respond to your inquiries and support requests
- To understand how users interact with our site (analytics)
- To detect and prevent abuse, scraping, and unauthorized access
- To send service-related communications (claim status, account updates)
- To protect the integrity and security of our platform and its data
We do not sell your personal information to third parties. We do not send marketing emails unless you explicitly opt in.
5. Data About Listed Tools
Shypd aggregates publicly available information about AI tools from internet sources. This data relates to businesses and products, not individuals. Tool listings include publicly available information such as tool names, website URLs, pricing models, and publicly shared founder names.
While we have genuinely tried our best to keep all listing information accurate and up to date, some details may be outdated, incomplete, or inaccurate given the scale of our index and how quickly tools evolve. If you are a tool owner or authorized representative and notice any errors, we strongly recommend claiming your tool on Shypd to verify and correct your listing. Claiming improves your Shypd Confidence Score by at least 15%.
To request removal of your listing, contact us at [email protected]. We process removal requests within 48 hours.
6. Data Security
We implement appropriate technical and organizational measures to protect your data, including:
- SSL/TLS encryption for all data in transit
- Row-level security (RLS) on our database
- Cloudflare protection against DDoS and unauthorized access
- HMAC-signed session tokens for API authentication
- Behavioral bot detection with escalating rate limits
- Reverse DNS verification for search engine crawlers
- Device fingerprinting to detect IP-switching evasion
- Regular security reviews
No system is 100% secure. While we take reasonable precautions, we cannot guarantee absolute security of your data.
7. Data Protection & Anti-Scraping
Our database of 80,000+ AI tool listings — including all descriptions, Shypd Confidence Scores, FAQ content, and LLM cards — represents original works created by Shypd through substantial investment of time, compute resources, and proprietary enrichment processes. This content is protected by copyright and database rights.
Proprietary Markers
Our database contains proprietary markers and synthetic entries designed to detect unauthorized copying. Any reproduction of our data that includes these markers constitutes prima facie evidence of unauthorized access.
Automated Access
Accessing Shypd through automated means — including scripts, bots, crawlers, scrapers, or any programmatic method — without prior written permission is strictly prohibited. We actively monitor access patterns using behavioral analysis, device fingerprinting, session token validation, and request profiling. Unusual activity will result in automated restrictions.
Legal Remedies
Shypd reserves the right to pursue civil remedies including injunctive relief, actual damages, and statutory damages under applicable laws — including but not limited to the Information Technology Act 2000 (India), the Computer Fraud and Abuse Act (United States), and the General Data Protection Regulation (European Union) — against unauthorized data extraction, scraping, or reproduction of our content.
Violations of this policy may result in permanent IP blocking, account termination, and legal action.
8. Third-Party Services
We use the following third-party services that may process your data:
| Service | Purpose | Location |
|---|---|---|
| Supabase | Database & authentication | United States |
| Vercel | Hosting & CDN | United States (global edge) |
| Cloudflare | Security, CDN, DDoS protection | Global |
| PostHog | Product analytics & session replay | United States |
| Google Analytics | Traffic analytics | United States |
| Upstash | Rate limiting & session management | United States |
| Stripe | Payment processing | United States |
Each of these services has their own privacy policies. We only share the minimum data necessary for these services to function. We do not sell or share your personal data with advertisers or data brokers.
9. International Data Transfers
Your data may be transferred to and processed in the United States, where our infrastructure providers (Supabase, Vercel, PostHog) are located. By using Shypd, you consent to this transfer. We ensure appropriate safeguards are in place through our service providers' data processing agreements.
10. Data Retention
- Account data — retained as long as your account is active. Deleted within 30 days of account deletion request.
- Analytics data — PostHog retains event data for 12 months. GA4 retains data per Google's default retention settings.
- Security logs — IP addresses and access patterns retained for 90 days for security monitoring, then automatically purged.
- Tool submission data — retained indefinitely as part of our public index unless removal is requested.
- Payment records — retained as required by applicable tax and financial regulations.
11. Your Rights
You have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your account and associated data
- Withdraw consent for non-essential data processing
- Request removal of your tool listing (if you are a tool owner)
- Object to processing of your data for specific purposes
- Request a copy of your data in a portable format
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
12. Children's Privacy
Shypd is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.
13. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date. For significant changes, we will make reasonable efforts to notify registered users via email. Continued use of Shypd after changes constitutes acceptance of the updated policy.
14. Contact
For privacy-related questions, data requests, or concerns, contact us at: [email protected]
For tool listing removal requests: [email protected] (processed within 48 hours)