privacy policy

A. Information You Provide Voluntarily

When you use the Service, you may submit:

• Text descriptions
• URLs or listings
• Screenshots, images, or files
• Messages or conversations related to suspected scams
• Feedback, labels, or votes
• Contact information (such as email, if provided)

You acknowledge that you choose what information to submit and are responsible for ensuring you have the right to share it.

B. Automatically Collected Information

We may automatically collect limited technical data, including:

• IP address
• Device type and browser
• Usage activity and interaction logs
• Timestamps and performance metrics

This information is used for security, analytics, and system improvement.

C. Mobile Application Data

When you use our mobile application, we may access or collect the following with your permission:

• Camera: Used to scan screenshots, documents, and messages for scam detection. Images are processed for analysis and are not stored on our servers after scoring is complete.
• Photo library: Used to select and analyze screenshots or images for scam patterns. We do not access your entire photo library — only images you explicitly select or share.
• Push notifications: Used to deliver trial expiration reminders, weekly threat digests, and scan results. You can disable notifications at any time in your device settings.
• Background app refresh: Used to periodically check for new screenshots that may contain scam content. This feature can be disabled in your device settings.
• Device identifiers: We may collect anonymous device identifiers for crash reporting (via Sentry) and analytics. These are not linked to your personal identity unless you create an account.

You can revoke any of these permissions at any time through your device’s Settings app. Revoking permissions may limit certain features of the application.

D. Browser Extension Data

When you use our browser extension, we may collect:

• Page content analysis: Text from web pages, emails, and messages is sent to our servers for scam scoring. We analyze content for risk signals but do not permanently store the full text of scanned pages.
• Breach check email: If you use the breach check feature, your email address is sent to our servers to check against known data breaches. You can clear this data at any time from the extension settings.
• Usage analytics: We collect anonymous usage data (scans performed, features used) to improve the service. You can opt out of analytics in the extension settings.

We use collected information to:

• Provide and operate the Service
• Generate risk assessments, scores, or classifications
• Improve, train, test, and refine our models, heuristics, and systems
• Conduct internal research, analysis, and quality assurance
• Monitor misuse, abuse, or malicious activity
• Communicate with users regarding the Service
• Comply with legal obligations

Important: Suss provides informational risk assessments only. We do not provide legal, financial, or law enforcement advice.

By submitting content to the Service, you grant Suss a non-exclusive, worldwide, royalty-free, perpetual license to use submitted content for:

• Operating the Service
• Improving and training machine learning models
• Developing derived insights, signals, classifications, and analytics
• Creating anonymized or aggregated datasets

Anonymization & Aggregation

We may:

• Remove or obscure personally identifiable information
• Aggregate submissions across users
• Generate derived data that does not identify any individual

Derived data, models, weights, heuristics, and outputs are the exclusive property of Suss.

You acknowledge that:

• You do not retain rights to the models or derived outputs
• No compensation is owed for model training or improvements
• Model behavior may evolve over time

• You retain ownership of your original submitted content.
• You grant Suss the rights described above to use that content.
• All models, algorithms, scoring systems, outputs, aggregated insights, improvements and derivatives are owned exclusively by Suss.

Nothing in this Privacy Policy transfers ownership of Suss intellectual property to users.

We do not sell personal data.

We may share information:

• With service providers who assist in operating the Service (under confidentiality obligations)
• If required by law, legal process, or governmental request
• To protect the rights, safety, or security of Suss, users, or the public
• In connection with a corporate transaction (e.g., financing, acquisition)

Any shared data is limited to what is reasonably necessary.

We implement reasonable administrative, technical, and organizational measures to protect information. However, no system is perfectly secure.

You acknowledge that:

• Submissions are made at your own risk
• We cannot guarantee absolute security
• You are responsible for protecting your own devices and credentials

We retain information for as long as reasonably necessary to:

• Provide and improve the Service
• Maintain system integrity
• Comply with legal obligations
• Protect against abuse or misuse

We may retain anonymized or aggregated data indefinitely.

You have the right to:

• Access your data: Request a copy of the personal data we hold about you.
• Delete your account: You can delete your account and associated data at any time from the mobile app settings or by contacting us at info@gotsuss.com.
• Clear extension data: You can clear all locally stored data from the browser extension settings page at any time.
• Opt out of analytics: You can disable analytics collection in the browser extension settings or mobile app settings.
• Revoke permissions: You can revoke camera, photo library, or notification permissions at any time through your device settings.

Upon account deletion, we will delete your personal data within 30 days. Anonymized or aggregated data that cannot identify you may be retained.

You agree not to submit:

• Content you do not have rights to share
• False or misleading information
• Content that violates applicable laws or third-party rights

You agree that Suss is not responsible for the accuracy, legality, or consequences of user-submitted content.

The Service is not intended for individuals under 18. We do not knowingly collect personal data from minors.

We may update this Privacy Policy from time to time. Continued use of the Service after changes constitutes acceptance of the updated policy.

For questions or concerns regarding this Privacy Policy, contact:

suss., Inc.
info@gotsuss.com