Privacy Policy
Last updated: May 25, 2026
anybrowse is a product of Heimat LLC, a Wyoming LLC.
We built anybrowse to be straightforward: a web scraping API with no unnecessary data collection. anybrowse is operated by Heimat LLC, operating as anybrowse. Here is exactly what we collect, what we do with it, and your rights.
1. What we collect
- IP address hash and coarse location/organization data
- User-Agent string
- Request timestamps, endpoint, status, latency, and error metadata
- Target URLs, page titles, and domains you scrape or crawl
- API keys, credit balances, Stripe session IDs, and purchase history
- Email address if you buy credits, subscribe, request free access, or contact support
- Relay worker identifiers and connection status for relay operators
- Your full IP address (we hash it)
- Your legal name unless you provide it in a support or payment context
- Payment card details (handled by Stripe, PayPal, or Coinbase Commerce)
- Advertising profiles or cross-site tracking cookies
- Scraped page content as a customer profile or resale dataset
2. How we use your data
- Service operation: Request logs are used to enforce rate limits, detect abuse, and debug issues.
- Abuse prevention: Hashed IPs and geolocation data help us identify and block malicious usage patterns.
- Billing and support: Email addresses, API keys, and payment IDs are used to deliver purchased credits, recover stuck checkouts, answer support requests, and prevent duplicate issuance.
- Analytics: We use aggregated, anonymized data to understand usage trends and improve the product.
- Research and licensing: Aggregated, anonymized data (never individual or identifiable records) may be licensed to third parties for research or commercial purposes.
We do not sell, rent, or trade individually identifiable data.
3. Data retention
- Request logs: Retained for up to 90 days, then deleted or aggregated.
- Aggregated / anonymized data: Retained indefinitely. This data cannot be traced back to you.
- API keys, credit balances, and purchase records: Retained while your key remains active and as needed for accounting, fraud prevention, and support.
- Email addresses: Retained while your account/key is active or while needed for support. Deleted upon verified request unless we must retain records for legal or accounting reasons.
- Scraped content: Processed transiently to serve your request. Debug screenshot storage is disabled by default; screenshots requested through the API are returned to you and not intentionally retained as customer records.
4. Third-party services
We use the following third parties to operate this service:
- Stripe (stripe.com/privacy) — processes credit-card payments. We never see your card details.
- Resend — sends transactional emails such as API-key delivery and purchase recovery messages.
- PayPal and Coinbase Commerce — process payments if you choose those methods.
- Hetzner and similar hosting providers — host the API, database, logs, and browser workers.
- anybrowse relay workers and browser infrastructure — render pages for requests that need browser execution. Target URLs may be passed to this infrastructure to process your request.
- BrowserCash — optional browser infrastructure if enabled for capacity or fallback rendering.
- ip-api.com (ip-api.com) — used to resolve geographic location (country, city, organization) from your IP address. No personal data is stored by us from this lookup.
5. Cookies and tracking
We do not use advertising cookies, tracking pixels, or third-party analytics (like Google Analytics). The only storage we use client-side is localStorage to optionally save your email for the demo widget on our landing page.
6. GDPR and CCPA rights
If you are located in the European Union, United Kingdom, California, or another jurisdiction with privacy rights, you may have the following rights:
- Access: Request a copy of any personal data we hold about you.
- Deletion: Request deletion of your personal data.
- Portability: Request your data in a machine-readable format.
- Objection: Object to processing of your data for certain purposes.
- Correction: Ask us to correct inaccurate account or billing records.
To exercise any of these rights, email us at privacy@anybrowse.dev. We will respond within 30 days.
7. Security
We use industry-standard practices to protect data in transit (TLS) and at rest. Access to raw logs is restricted to authorized operators only. We do not store raw IP addresses, reducing exposure in the event of a breach.
8. Changes to this policy
If we make material changes to this policy, we will update the "Last updated" date at the top. Continued use of the service after changes constitutes acceptance of the updated policy.
9. Contact
Privacy questions or requests: privacy@anybrowse.dev
General support: hello@anybrowse.dev — we respond within 24 hours.