This Privacy Policy explains how Total Guard ("Total Guard," "we," "us," or "our") collects, uses, discloses, and safeguards information when you use our websites, web app, browser extensions, mobile apps, and related services (collectively, the "Service"). By using the Service, you agree to the practices described here. If you do not agree, please do not use the Service.
1. Who we are
Total Guard is a consumer digital-privacy and identity-protection product. We help people detect data breaches, remove personal information from data brokers, monitor for identity-theft signals, and block scams across browsers and devices.
Information you provide
- Account information. Email address, password (stored as a salted hash), name, and phone number.
- Identity attributes you ask us to monitor. Email addresses, phone numbers, and similar identifiers you submit so we can scan for breaches and exposures.
- Payment information. When you subscribe, billing details are collected and processed by our payment processor; we do not store full card numbers on our servers.
- Support communications. Messages you send us when contacting support.
Information from third parties when you sign in
- Google Sign-In. If you choose "Continue with Google," Google provides us with your Google account ID, email address, name, and profile picture. We request only the
openid, email, and profile scopes. We do not request access to your Gmail, Drive, Calendar, or any other Google service data.
- Other identity providers (Apple, Facebook) if and when added, provide an analogous limited identifier and email address.
Information collected automatically
- Usage and device data. IP address, approximate location derived from IP, device and browser type, operating system, pages viewed, referring URLs, and timestamps.
- Product analytics. Events that describe how you use the Service (for example: signed up, completed onboarding, opened a breach alert) collected via privacy-respecting analytics tooling.
- Browser-extension telemetry. Where applicable, the URL of pages you visit is checked against threat lists; only metadata about blocks and warnings is stored, not full browsing history.
Information from data sources we query on your behalf
To deliver the Service we query third-party sources (such as breach databases and data-broker registries) using identifiers you have asked us to monitor, and we store the results so we can show them to you and alert you to changes.
3. How we use information
- To provide, operate, maintain, and improve the Service.
- To create and authenticate your account.
- To run breach scans, broker-removal requests, and threat blocking on identifiers you have provided.
- To send transactional messages (security alerts, account notices, billing receipts).
- To send service updates and, with your consent where required, marketing emails. You can opt out of marketing at any time.
- To detect, investigate, and prevent fraud, abuse, and security incidents.
- To comply with applicable law and respond to lawful requests.
4. Legal bases for processing (EEA / UK)
Where the GDPR or UK GDPR applies, we process your personal data under one or more of the following legal bases: performance of a contract (delivering the Service you signed up for), our legitimate interests (operating, securing, and improving the Service), your consent (for example, marketing communications), and compliance with legal obligations.
5. How we share information
We do not sell your personal information. We share it only as described below:
- Service providers. Cloud hosting, database, email and SMS delivery, payment processing, customer support, and analytics vendors that process data on our behalf under contractual confidentiality and data-protection obligations.
- Breach and broker-removal partners. We may transmit identifiers you have asked us to monitor (for example, an email address or phone number) to specialized providers so they can return matching breach records or process opt-out requests on your behalf.
- Legal and safety. We may disclose information to comply with applicable law, lawful requests from public authorities, or to protect the rights, property, or safety of Total Guard, our users, or others.
- Business transfers. If Total Guard is involved in a merger, acquisition, financing, or sale of assets, your information may be transferred as part of that transaction; the receiving party will be bound by terms no less protective than this Policy.
6. Google user data and Google API Services
Total Guard's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
- We use Google account information solely to authenticate you and create or sign you in to your Total Guard account.
- We do not use Google user data to train generalized or third-party AI/ML models.
- We do not sell or transfer Google user data for advertising, credit-worthiness, lending, or any unrelated purpose.
- We do not allow humans to read your Google user data unless: (a) you give us explicit permission for specific data; (b) it is necessary for security purposes such as investigating abuse; (c) it is required to comply with applicable law; or (d) the data is aggregated and used for internal operations in compliance with the policy.
You can revoke Total Guard's access to your Google account at any time from your Google Account permissions page.
7. Cookies and similar technologies
We use cookies and similar technologies to keep you signed in, remember preferences, secure the Service, and measure usage. Where required by law, we will ask for your consent before placing non-essential cookies. You can control cookies through your browser settings; disabling them may impact functionality.
8. Data retention
We retain personal information for as long as your account is active and as needed to provide the Service. We may retain certain information for longer where required to comply with legal obligations, resolve disputes, enforce our agreements, or maintain reasonable business records (for example, billing records). When information is no longer needed, we delete or anonymize it.
9. Security
We use administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit, hashed passwords, restricted internal access, and continuous monitoring. No system is perfectly secure, and we cannot guarantee absolute security. If you believe your account has been compromised, contact us immediately.
10. International transfers
Total Guard is operated from the United States, and information we collect may be transferred to and processed in the United States or other countries. Where required, we use appropriate transfer mechanisms such as the European Commission's Standard Contractual Clauses to provide an adequate level of protection.
11. Your rights and choices
Depending on where you live, you may have the following rights with respect to your personal information:
- Access a copy of the personal information we hold about you.
- Correct inaccurate or incomplete information.
- Delete your account and personal information, subject to limited exceptions.
- Receive a portable copy of certain information.
- Object to or restrict certain processing, including direct marketing.
- Withdraw consent where we rely on consent as the legal basis.
- Lodge a complaint with your local data-protection authority.
California residents have additional rights under the CCPA/CPRA, including the right to know what personal information we collect and disclose and to opt out of any "sale" or "sharing" of personal information. We do not sell personal information.
To exercise any of these rights, email us at privacy@totalgaurd.ai. We will respond within the time frame required by applicable law.
12. Children's privacy
The Service is not directed to children under 13 (or under 16 in the EEA/UK). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can delete it.
13. Changes to this policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through the Service before the changes take effect. The "Last updated" date at the top of this page indicates when this policy was most recently revised.
If you have questions about this Privacy Policy or our data practices, contact us at:
Total Guard
Email: privacy@totalgaurd.ai
Web: https://totalgaurd.ai
