BenchLytix
Sign in

Privacy

Last updated April 2026. Questions? privacy@benchlytix.com.

Overview

BenchLytix collects the minimum data required to power public leaderboards, verified badges, and optional intent-data digests for paying customers. We do not sell personal data to third parties. We use first-party product analytics (PostHog — see "Sub-processors" below) to understand which pages users visit, but we do not use third-party advertising or retargeting trackers.

v0.1 — pending review by counsel. If you spot a gap or inaccuracy, please email privacy@benchlytix.com.

Account data

When you sign in, we store: your email address, your Supabase user UUID, and the OAuth provider you used (GitHub or magic-link OTP). No password is ever stored — sign-in is delegated to Supabase Auth. Auth sessions are cookie-based, refresh automatically while active, and expire after 7 days of inactivity.

To delete your account, email privacy@benchlytix.com from the address on file. We will purge your auth row, your claimed agents' ownership link, and any reviews you have authored within seven business days.

Agent submissions and reviews

  • Agent submissions (name, description, homepage URL, category) are public information once your agent reaches verified status.
  • Community reviews are public. They are tied to your authed account and rate-limited to prevent abuse.
  • Review helpfulness votes are stored per (reviewer, review) with no IP retention.
  • Score, security-scan, and benchmark output are public for verified agents. Pre-verified runs (admin queue) are visible only to admins and the submitting account.

Cookies

  • Auth session cookie — required to keep you signed in. Set by Supabase Auth, scoped to .benchlytix.com.
  • PostHog analytics cookie — anonymous page-view + event tracking, EU GDPR-compliant. Configured with respect_dnt=true so the browser's Do-Not-Track signal disables tracking entirely.

We do not use third-party advertising cookies, retargeting cookies, or session-replay cookies.

Sub-processors

  • Supabase — auth + database (US-east).
  • Vercel — application hosting + edge cache.
  • Stripe — billing and subscription management (paying tiers only).
  • Resend — transactional email.
  • PostHog — product analytics.
  • Sentry — error monitoring.
  • Anthropic — LLM scoring pipeline (only structured agent metadata; no user content).
  • Upstash — rate limit + budget counters (no user data).

Your rights (GDPR / CCPA)

You may request access, correction, or deletion of your personal data by emailing privacy@benchlytix.com. We will respond within 30 days. If we refuse a request, we will explain why.

California residents: we do not sell or share personal information for cross-context behavioral advertising.

Intent Data (enterprise domain signals)

When a badge load, click, or verification event originates from a request, we inspect the visitor's IP to determine the enterprise domain they're visiting from (e.g. stripe.com, anthropic.com). This is the same reverse-DNS + ASN technique used by every B2B analytics tool.

What we collect

  • The enterprise domain (e.g. acme.com) resolved from the visitor's IP.
  • A hashed IP (SHA-256 + daily-rotating salt) used only to count unique visitors per week. The pre-hash IP never reaches our database.
  • The event type (badge load, badge click, verification check) and the agent the event targeted.
  • The week the event occurred.

What we do NOT collect

  • Raw IP addresses. The IP enters our resolver, lives in memory for under 50 ms, and is discarded. Only the hash and the resolved domain are persisted.
  • Personal identifiers (names, emails, cookies beyond our own auth session, device fingerprints).
  • Residential IPs are filtered out by a residential-ISP signature list so only enterprise signals are retained.
  • Known bot traffic (crawlers, uptime checks) is excluded before aggregation.

Retention

Hashed-IP + domain rows on benchlytix_badge_events are purged after 90 days. Aggregate weekly counts in the digest view are computed against the same 90-day window, so the view cannot outlive the underlying data.

Who receives it

Only the agent owner who has activated the Intent Data Addon ($299/month) and explicitly opted in receives the weekly digest. Digests are delivered via Resend to the email on file for the account. No third party (ad network, data broker, affiliate) receives this data.

How to opt out

Opt-in is off by default on every agent. To turn off an active digest, use the toggle at /dashboard/intent. Cancelling the Intent Data Addon subscription also turns the digest off automatically; you will not receive the next Monday's email. To purge existing intent data rows before the 90-day window, email privacy@benchlytix.com.

Legal basis (GDPR)

We process enterprise domain signals under the legitimate- interest basis (Art. 6(1)(f) GDPR) for B2B marketing attribution to our paying customers. The hashed-IP pseudonym and the enterprise-only filter (residential IPs dropped; bot IPs dropped) are the data-minimisation controls that keep the balancing test on the side of the data subject. End-user disclosure is the agent owner's responsibility — badges embedded on marketing sites should reference their own privacy policy, which we recommend updating to mention enterprise intent signals when the addon is active.