Privacy Policy
Last updated: 2026-06-25
SuperSmall LLC ("we", "SuperSmall"), Seattle, WA, operates lens. This explains what we collect and why.
What we collect
- Account: your email + name (via Google Sign-In).
- Targets you audit: the website URLs and code repositories you submit.
- Audit results: the findings, grades, and reports generated for your targets.
- Usage + billing: runs, token balance/spend, and payment records (card details are handled by Stripe — we never see or store them).
- Operational logs: request logs (may include your email) retained 90 days.
How we use it
To run the audits you request, bill you, provide support, secure the service, and improve the product. We do not sell your data.
Sub-processors
Who processes data on our behalf:
- Google — sign-in / authentication.
- Stripe — payment processing.
- Amazon Web Services (AWS) — hosting + storage (US, us-west-2).
- Anthropic — AI analysis of your audit data (the audit content is sent to Anthropic's API to generate findings).
Retention
- Account data: kept while your account is active.
- Audit run data + report artifacts: automatically deleted 1 year after creation.
- Operational logs: 90 days.
- You can delete your account + all associated data at any time (in-app, "Your data") — we erase it across all stores immediately.
Your rights (GDPR / CCPA)
Access, export, correction, and deletion. Use the in-app "Your data" tools or email support@supersmall.ai.
Security
Data encrypted at rest (AWS KMS); audits are read-only (we never run your code); any secret we detect is scrubbed before storage.
Cookies
A single session cookie for sign-in. No advertising/tracking cookies.
Contact
support@supersmall.ai