ACP-SEC Privacy Policy
Last updated: June 2026 · Effective immediately
1. What We Collect
ACP-SEC does not collect personally identifiable information (PII). Specifically:
- No name, email address, or account registration is required
- No IP addresses are logged beyond standard server access logs
- No behavioral tracking or session recording
- No advertising identifiers
2. Scan Results
When you run a security scan on the ACP-SEC Scanner:
- Scan results are processed server-side to analyse the target URL and returned to your browser
- Results are stored temporarily in server memory only for the current session
- No scan results are permanently stored, associated with your identity, or shared with third parties
- Leaderboard entries are based on public, voluntarily submitted agent names and are not linked to individual users
3. Cookies & Tracking
- No third-party analytics (no Google Analytics, no Mixpanel, no Meta Pixel)
- No advertising cookies
- Session cookies may be used solely for the password-protected leaderboard feature, if enabled
- No cross-site tracking
4. Wallet Addresses
If you provide a wallet address for on-chain ACP registration checks:
- The address is used only to query public blockchain data (Base mainnet)
- It is not stored, linked to your identity, or shared
- Wallet addresses are pseudonymous — we do not attempt to link them to real-world identities
5. Public Data
ACP-SEC operates on publicly available data only:
- Agent websites and documentation pages that are publicly accessible
- Public blockchain state (on-chain data)
- Public X/Twitter profiles via publicly available scrapers
6. Third-Party Services
ACP-SEC may make requests to external services to perform scans (e.g. fetching an agent's public website). These requests originate from our server and do not include your personal information.
7. Data Retention
No user data is retained beyond the duration of a server session. The leaderboard JSON file is a manually curated public list and contains only agent names and publicly available security scores.
8. Your Rights
Since we do not collect personal data, there is nothing to access, correct, or delete. If you believe any information about you has been inadvertently stored, contact security@acpsec.app and we will address it promptly.
9. Changes to This Policy
We may update this policy as the service evolves. Material changes will be noted in the GitHub changelog.
10. Contact
Questions about this policy: security@acpsec.app