Ga naar hoofdinhoud
AuditXL
Gratis beginnen
Amendement 13 · AVG · Privacywet

Privacybeleid

Wij zetten ons in voor volledige transparantie. Dit beleid voldoet aan de Israëlische Privacywet 5741-1981, Amendement 13 (5784-2023) en de Europese AVG.

Bijgewerkt: 19 maart 2026

Deze Engelse versie is een niet-bindende vertaling die voor het gemak wordt aangeboden. De Hebreeuwse originele versie is de juridisch bindende versie van dit privacybeleid.

Hebreeuws origineel bekijken
1

Introduction

AuditXL ("the Company", "we") is committed to protecting user privacy. This policy explains what data we collect, how we use it, and what your rights are — in accordance with Israel's Privacy Protection Law 5741-1981, Amendment 13 (5784-2023), and the EU's General Data Protection Regulation (GDPR). Use of the service constitutes consent to this policy.

2

Information We Collect

  • Account details: Name, email address, password (encrypted) — collected during sign-up via Clerk.
  • Payment details: Processed directly by Stripe. We do not see or store credit card numbers.
  • Usage data: Sites scanned, reports generated, keywords tracked.
  • Browsing data: IP address, browser type, pages viewed — for security and analytics purposes.
  • Cookies: For user identification and preference storage. See section 6.
4

How We Use Your Information

  • Service delivery — generating and dispatching SEO reports.
  • Product improvement — analyzing anonymized usage patterns (with consent only).
  • Communication — updates, invoices, and service notifications.
  • Security — detecting and preventing misuse.
  • Legal compliance — as required by law.
5

Sensitive Data

Amendment 13 defines categories of "sensitive data" that require enhanced protection: health status, biometric data, genetic data, precise location, financial status, sexual orientation, and criminal history.

AuditXL does not collect sensitive data as defined under Amendment 13. If such data is uploaded by mistake, it will be deleted immediately. Please do not include sensitive data in any input you provide to the service.

6

Sharing with Third Parties

We do not sell user data. We share information only with essential service providers:

SupabaseDatabase hosting (servers in the European Union)
StripePayment processing
ClerkIdentity and authentication management
ResendEmail delivery
SentryError tracking (no personal user data)
DataForSEOSEO data (domains only)
7

Cross-Border Data Transfer

Some of our service providers are located outside Israel. In accordance with Amendment 13, we ensure adequate protection for any data transferred abroad:

Supabase· European Union

Adequacy decision — the EU is recognized as providing adequate protection

Stripe, Clerk, Resend· United States

Data Processing Agreements (DPAs) with Standard Contractual Clauses (SCCs)

DataForSEO· International

Contractual data processing agreements

Sentry· United States

Data Processing Agreements (DPAs) with SCCs

8

Storage and Information Security

Your data is encrypted in transit (TLS 1.3) and at rest (AES-256). Database servers are located in the European Union. We apply industry-standard security measures, but no security on the internet is perfect. AuditXL implements Privacy by Design principles — our defaults are always the most privacy-protective option.

9

Security Breaches

In accordance with Amendment 13 to the Privacy Protection Law, in the event of a security breach:

Within 24 hoursWe will notify the Privacy Protection Authority if the breach may significantly harm user rights
Within 48 hoursWe will notify affected users if the breach poses a high risk to their rights
ImmediatelyWe will take containment measures and investigate to determine breach scope and prevent recurrence
10

Cookies

We use two categories of cookies:

Essential cookies

Required for service operation — user authentication and preference storage. These cannot be disabled.

Analytics cookies (PostHog)

Used only with your consent. Manageable at any time via the cookie management tool at the bottom of the screen.

You can change your cookie preferences at any time through the floating cookie management tool, without affecting the lawfulness of any processing performed before the change.

11

Your Rights

Under Amendment 13 and GDPR, you have the following rights. We respond to requests within 30 days:

  • Right of access: To review the personal information we hold about you.
  • Right of rectification: To correct inaccurate or incomplete information.
  • Right to erasure: To delete your account and data (right to be forgotten), within 30 days.
  • Right to data portability: To receive a copy of your data in a standard format (JSON/CSV) for use with another provider.
  • Right to object: To object to certain processing based on legitimate interest.
  • Right to withdraw consent: To withdraw consent for analytics at any time — without affecting the lawfulness of prior processing.

To exercise these rights: privacy@auditxl.io

12

Data Retention

Active account dataFor as long as the account is active
After account deletion30 days — full deletion thereafter
Accounting records7 years — as required by law
Analytics dataUp to 12 months from collection (with consent)
Security logs90 days
13

Supervisory Authority

Under Amendment 13, you have the right to lodge a complaint with the relevant supervisory authority:

Privacy Protection Authority (Israel)

Responsible for enforcing the Privacy Protection Law and Amendment 13 in Israel. Complaints can be filed via gov.il.

European Data Protection Authority (for EU residents)

EU citizens may contact the data protection authority in their member state under GDPR.

14

Policy Changes

We will update this policy as needed. Material changes will be announced by email 30 days in advance. Continued use after an update constitutes acceptance of the updated policy.

15

Contact

For any privacy-related question, contact our Data Protection Officer: privacy@auditxl.io

Terug naar home
🔒Privacy📋VoorwaardenToegankelijkheid