Privacy and Cookies Policy

WebScraping.AI

Last Updated: May 24, 2026

1. Introduction

Urlooker LLC, the operator of WebScraping.AI (hereinafter "we", "us", "our" or the "Company") welcomes you on our website https://webscraping.ai (the "Site"). This Privacy and Cookies Policy ("Policy") describes the types of information we collect from people visiting our Site or using our Service. Capitalized terms used but not defined in this Policy have the meanings given to them in our Terms of Service.

By accessing the Site or using our Service, you agree to this Policy. If you do not agree, please do not use the Site or Service. Each time you use the Site or our Service, the current version of this Policy will apply.

2. General Principles

We may collect two types of information: "Personal Data" and "Aggregate Information" (as defined below).

3. Personal Data

3.1 Processing Personal Data securely, fairly, and transparently is important to us.

3.2 We process Personal Data in accordance with applicable Data Protection Laws, including GDPR, UK GDPR, and CCPA. In addition to terms defined in the Terms of Service, this Policy uses the following definitions:

  • "Controller" is given the same meaning as in the GDPR — a party that determines the purposes and means of the processing of Personal Data.
  • "Data Subjects" refers to individuals whose Personal Data we process.
  • "Incident" means: (a) a complaint or request with respect to an individual's rights under applicable Data Protection Laws; (b) an investigation into or seizure of Personal Data by government officials, or a specific indication that such an investigation or seizure is imminent; or (c) any breach of security and/or confidentiality leading to accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, Personal Data.
  • "Personal Data" means any data relating directly or indirectly to an identifiable Data Subject. Personal Data does not include data that is anonymized, aggregated, de-identified, and/or compiled on a generic basis and which does not name or identify a specific individual.
  • "Processing" includes collecting, recording, using, storing, amending, adapting, disclosing, transferring or transmitting, structuring, combining, deleting, or destroying Personal Data.
  • "Processor" is the party that processes Personal Data on behalf of the controller.

3.3 We collect Personal Data that is voluntarily provided when you create an Account or log in. Specifically, when you sign up, we ask for your email address, business name, and billing/payment information. Payment information is handled by our payment processor; we do not store full payment card details on our servers.

3.4 We use this information to allow you to authenticate to the Service, to select an appropriate plan, to deliver the Service, to send you transactional emails (account notifications, billing confirmations), and — with your prior opt-in consent — newsletters or marketing communications.

3.5 We also automatically collect and store usage logs about your use of the Service, including request metadata, timestamps, IP addresses associated with requests, and other operational telemetry. Usage logs are retained for thirty (30) days, after which they are permanently deleted.

3.6 We process your Personal Data only to the extent necessary to provide the Service in accordance with our Terms of Service, this Policy, and any further written instructions from you that are mutually agreed upon. We will:

  • 3.6.1 maintain a reasonable and appropriate security program comprising adequate technical and organizational measures to protect against unauthorized, unlawful, or accidental processing, use, erasure, loss, destruction of, or damage to your Personal Data;
  • 3.6.2 ensure that only our personnel, contractors, or third-party providers who need-to-know will be given access to your Personal Data to the extent necessary to perform our obligations under the Terms of Service;
  • 3.6.3 provide adequate training to our staff and ensure that they comply with the obligations in this Policy; and
  • 3.6.4 upon your request or termination of your Account, delete or anonymize your Personal Data in our possession no later than sixty (60) days, in accordance with our standard backup and retention practices, unless we have terminated your Account for violation of the Terms of Service or are required by law to retain the data.

4. How We Use Your Personal Data and Our Lawful Basis

4.1 We will only use your Personal Data when the law allows us to. Most commonly, we will use your Personal Data in the following circumstances:

  • 4.1.1 to perform the contract we are about to enter into or have entered into with you or your company;
  • 4.1.2 where it is necessary for our legitimate interests and your interests and fundamental rights do not override those interests; or
  • 4.1.3 where we need to comply with a legal obligation.

4.2 When we process your Personal Data, we are required to have a lawful basis for doing so. We may rely on any of:

  • Consent — where you have given us clear consent to process your Personal Data for a specific purpose
  • Contract — where our use of your Personal Data is necessary for a contract with you, or to take specific steps before entering into a contract
  • Legal obligation — where our use of your Personal Data is necessary to comply with the law
  • Legitimate interests — where our use of your Personal Data is necessary for our legitimate interests or those of a third party (unless overridden by your protection interests)

5. AI Features and Data Use

5.1 Our Service uses artificial-intelligence and machine-learning techniques, including large language models, to parse and extract information from Scraped Content.

5.2 We do not use Scraped Content, the prompts and queries you submit, or the outputs generated by the Service to train, fine-tune, or evaluate our machine-learning or AI models, except as expressly authorized by you in a separate written agreement. Our AI models are used solely at inference time to deliver the Service to you.

5.3 The Service may rely on third-party AI model providers. We contractually require all such third-party providers not to use your Scraped Content, prompts, queries, or outputs to train, fine-tune, or evaluate their models, and we engage only providers offering such terms.

6. Data Controller Status for Scraped Content

6.1 Scraped Content retrieved through the Service at your direction may include personal information of third parties (i.e., individuals other than you). We are neither a data controller nor a processor of any personal information contained in Scraped Content. You are the sole data controller of any such personal information, and you are solely responsible for compliance with applicable Data Protection Laws, including providing notices under GDPR Article 14 (and analogous provisions in other jurisdictions) and establishing a lawful basis for processing.

6.2 This Policy addresses our processing of Personal Data about you (the customer and your authorized users). It does not address the personal information of third parties contained in Scraped Content, for which you bear sole responsibility.

7. Who We Share Your Personal Data With

7.1 We may share your Personal Data with the following categories of recipients:

  • Cloud infrastructure providers that host the Service and store your Account data;
  • Payment processors that handle billing transactions;
  • Email service providers that deliver transactional and (where you have opted in) marketing emails;
  • AI model providers that perform inference for AI features (subject to the no-training commitment in Section 5);
  • Proxy and network providers that facilitate web requests;
  • Customer support and analytics providers that help us operate and improve the Service;
  • Professional advisors including legal, audit, and tax;
  • Law enforcement, regulators, or other authorities where required by applicable law.

7.2 We do not sell your Personal Data. We do not share your Personal Data for cross-context behavioral advertising.

7.3 A list of our material subprocessors, including AI model providers, is available to enterprise customers upon request under non-disclosure agreement.

8. International Data Transfers

8.1 The Company is established in the United States. Where you are located outside the United States, your Personal Data may be transferred to, and processed in, the United States or other jurisdictions in which we or our subprocessors operate.

8.2 Where we transfer Personal Data from the European Economic Area, the United Kingdom, or Switzerland to a country that has not received an adequacy decision, we will implement appropriate safeguards such as the European Commission's Standard Contractual Clauses (SCCs) or the UK International Data Transfer Addendum, as applicable.

9. Marketing

9.1 We may send you information about our Service, new features, or special offers that may be of interest. We send marketing communications only with your prior opt-in consent.

9.2 You can unsubscribe at any time by:

  • 9.2.1 using the "unsubscribe" link in any marketing email; or
  • 9.2.2 contacting us using the details at the end of this Policy.

9.3 Transactional communications — such as billing receipts, account notifications, security alerts, and important updates to our Terms of Service or this Policy — are not marketing and are sent on a service-delivery basis regardless of your marketing preferences.

10. User Obligations

In supplying Personal Data to us, you warrant that you have all necessary rights to provide such Personal Data for processing in connection with the Service. To the extent required by applicable law, you are responsible for ensuring that any data subject consents necessary for this processing are obtained, and for maintaining a record of such consents.

11. Aggregate Information

11.1 We may collect aggregate information about your activities on the Site or in connection with the Service that cannot be used to identify, locate, or contact you (such as frequency of visits, request volumes, latencies, error rates, browser type, etc.). Aggregate information is collected even if you do not enter any information.

11.2 We may use aggregate information to provide and improve the Service, monitor traffic and usage patterns, and for other legitimate business interests. We may disclose aggregate information to third parties for business reasons (e.g., investors evaluating our user base). Aggregate information does not include Personal Data.

12. Security

12.1 We take appropriate technical and organizational security measures to protect against unauthorized access, alteration, disclosure, or destruction of data. These include internal reviews of our data collection, storage, and processing practices and security measures, as well as physical and logical safeguards.

12.2 We restrict access to collected information to personnel, service providers, and agents who need it to operate, develop, or improve the Service. These individuals are bound by confidentiality obligations.

13. Integrity of Your Data

We process your Personal Data only for the purposes for which it was collected and in accordance with this Policy. We review our data collection, storage, and processing practices to ensure that we only collect, store, and process the Personal Data needed to provide and improve the Service. We take reasonable steps to ensure the Personal Data we process is accurate, complete, and current, but we depend on you to update or correct your Personal Data when needed.

14. Children and Special Categories of Personal Data

14.1 The Site and Service are not directed to children. We will not knowingly request personally identifiable information from anyone under the age of 18. If we become aware that a user under 18 has registered, we will remove their Personal Data from our systems.

14.2 We do not collect Special Categories of Personal Data about you (racial or ethnic origin, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, health, genetic, or biometric data). We do not collect information about criminal convictions or offenses.

15. Business Transfers

In the event the Company sells substantially all of its assets, or one of its business units is acquired, Personal Data of users will likely be among the transferred assets.

16. Your Rights

16.1 Depending on your jurisdiction (including under GDPR, UK GDPR, and CCPA), you may have rights including:

  • 16.1.1 fair processing and transparency over how we use your Personal Data;
  • 16.1.2 access to your Personal Data and certain supplementary information;
  • 16.1.3 correction of any mistakes in your Personal Data we hold;
  • 16.1.4 erasure (deletion) of your Personal Data in certain situations;
  • 16.1.5 portability — receiving your Personal Data in a structured, commonly used, machine-readable format and transmitting it to a third party;
  • 16.1.6 objection to processing for direct marketing at any time;
  • 16.1.7 objection to automated decision-making that produces legal or similarly significant effects;
  • 16.1.8 restriction of our processing in certain circumstances; and
  • 16.1.9 the right not to be discriminated against for exercising your rights (where applicable under CCPA).

16.2 To exercise any of these rights, please email us using the details at the end of this Policy. We may need to verify your identity before responding, and we will endeavor to respond within 30 days of receipt of a valid request.

16.3 You also have the right to lodge a complaint with a supervisory authority in your jurisdiction.

17. Cookies

17.1 When you access our Site or use our Service, we may collect information regarding your IP address for the purposes of administering the Site and tracking Site usage.

17.2 We may also collect information about the websites that directed you to our Site, the time of your visit, and how long you spent on the Site. We aggregate such information to compile reports about trends and user behavior; such information is anonymized and cannot be tied directly to you.

17.3 We use cookies and similar technologies that are necessary for the operation of the Site (such as authentication, session management, and security). These are essential to deliver the Site and Service to you.

17.4 Our cookies cannot be used to read data from your hard drive or retrieve information from cookies set by other websites. Our cookies cannot be used to deliver viruses or other malicious code.

17.5 You can manage or delete cookies in your browser settings. If you delete cookies relating to the Site, we may not be able to identify you on your return. If you disable cookies entirely, certain features may not function.

18. Changes to This Policy

We may update this Policy from time to time. Material changes will be communicated via email or in-app notification. The "Last Updated" date at the top of this Policy indicates when it was most recently revised. Your continued use of the Service after the effective date of any updates constitutes acceptance.

19. How to Contact Us

If you have any questions about this Policy or the Personal Data we hold about you, please contact us at:

support@webscraping.ai

Urlooker LLC 10350 N Vancouver Way #8001 Portland, Oregon 97217, USA

Icon