Privacy Policy

Effective Date: August 10, 2025
(for Nassau Technologies, LLC – Devsey)

1. Introduction

This Privacy Policy (“Policy”) explains how Nassau Technologies, LLC (“Company,” “we,” “our,” or “us”) collects, uses, discloses, stores, and protects personal information when you use the Devsey platform (“Service”), a cloud-based browser testing platform.

This Policy applies to all users of the Service located within the United States. It is governed by applicable U.S. federal law and the laws of the State of New York, including the New York Stop Hacks and Improve Electronic Data Security (SHIELD) Act.

By creating an account, accessing, or using the Service, you agree to the terms of this Policy. If you do not agree, you must discontinue use immediately.

2. Information We Collect

We collect the following categories of information:

A. Account Registration Data (Mandatory)

First Name
Last Name
Email Address
Password (stored using secure hashing algorithms)

B. Business Information (Optional, post-payment for customization)

Business Name
Business Address
Business Phone Number
Business Website

C. Testing Artifacts (Generated through Use of Service)

Screenshots and HTML/DOM snapshots
Console logs, error stacks, and system messages
Network traffic logs, including HTTP request and response metadata (HAR files, headers, status codes)
Cookies and local storage/session storage values from tested websites
Test telemetry necessary to reproduce or analyze browser sessions

Important: Testing artifacts may incidentally contain personal data present on tested systems.

3. User Responsibility for Test Data

You are solely responsible for obtaining all rights, authorizations, and consents required by law before directing the Service to capture or process any third-party data.
You must not submit credentials, personal data, or other sensitive information to the Service unless you have lawful authority to do so.
The Company bears no responsibility or liability for unauthorized, unlawful, or improper use of the Service, or for the processing of data captured during tests initiated under your account.

4. How We Collect Information

Direct Collection: All data is collected directly from you during account creation, subscription setup, and use of the Service.
Automated Collection: Testing artifacts are generated automatically during test execution.
No Third-Party Harvesting: The Company does not obtain Customer Data from external third-party sources or import data on your behalf.

5. How We Use Information

We process personal information solely to:

Provide and maintain the Service;
Authenticate accounts and manage subscriptions;
Execute browser tests and generate requested artifacts;
Provide customer support and respond to inquiries;
Conduct internal analytics to improve Service functionality and security;
Enforce compliance with the Terms of Service, Acceptable Use Policy, and applicable laws.

We do not sell, rent, or share personal information with third parties for advertising or marketing purposes.

6. Data Sharing and Disclosure

Payment Processing: Stripe, Inc. is engaged as our payment processor. Stripe operates independently and may collect personal and payment information at checkout. Customer interactions with Stripe are governed by Stripe’s privacy policy.
Subprocessors: We may engage trusted U.S.-based infrastructure or hosting providers. Current subprocessors include Stripe, Inc. and our U.S.-based hosting providers.

We do not allow advertisers, embedded analytics, or tracking scripts within the Service.

7. Cookies and Tracking Technologies

Essential Cookies: Devsey uses cookies solely for authentication, session management, and maintaining secure user sessions.
Test Session Cookies: Cookies set by tested websites may appear in generated artifacts. These are stored only as part of artifacts for your account and are not accessed or processed by the Company outside this context.
No Tracking Cookies: We do not use third-party advertising, tracking, or behavioral profiling cookies.

8. Data Retention

Account Data: Retained until account deletion, then permanently deleted after 90 days.
Testing Artifacts: Retained for up to 90 days after creation unless deleted earlier by you.
Backups: Database backups are encrypted and subject to the same retention and deletion standards.

9. Data Security

We employ administrative, technical, and physical safeguards consistent with industry standards, including but not limited to:

TLS 1.2+ encryption for data in transit;
Encrypted backups at rest;
Hashed password storage;
Firewalls, intrusion prevention, and monitoring systems;
Multi-factor authentication for administrator accounts;
Role-based access controls;
Secure coding practices, including input sanitization and parameterized queries;
Regular vulnerability scans and patch management.

Despite these safeguards, no system is completely secure. You acknowledge that no guarantee of absolute security can be provided.

10. User Rights and Choices

Right to Deletion: Request permanent removal of your account and associated data.
Right to Data Portability: Request a machine-readable export of your account data.

Requests should be directed to support@seysoft.co. We may require verification of identity before fulfilling requests.

11. Law Enforcement and Legal Process

The Company will not disclose Customer Data to law enforcement or other governmental authorities except when legally compelled to do so. If permitted by law, we will provide you with prompt notice of such a request.

12. U.S. Jurisdiction Only

The Service is intended for use exclusively within the United States. If you access the Service from outside the U.S., you are solely responsible for compliance with applicable local laws.

13. Changes to This Policy

We may update this Policy at any time. Material changes will be communicated via email or posted prominently on the Service. The “Effective Date” will always reflect the most recent revision.

14. Contact Information

Nassau Technologies, LLC
Email: support@devsey.com