Legal

Privacy Policy

Effective date: June 13, 2026 · Operated by Treesh Tech LLC

The short version: Your firewall configurations are never stored. We process them in memory to generate your audit report and discard them immediately. The only personal data we collect is what is necessary to process your payment and communicate with you.

01 Who We Are

FirewallIQ is operated by Treesh Tech LLC, an Indiana limited liability company ("we," "us," or "our"). This Privacy Policy explains how we collect, use, and protect information when you use the FirewallIQ service at firewalliq.io (the "Service").

Questions about this policy may be directed to privacy@firewalliq.io.

02 What We Do Not Collect

We want to be explicit about what we do not collect, because it is central to how FirewallIQ works:

Firewall configurations. Configuration text you submit for auditing is processed in memory on our server-side function and is never written to a database, log file, object storage, or any other persistent medium. It is discarded the moment your audit report is returned.
Audit results. We do not retain copies of the audit reports generated for you. Reports exist only in your browser session.
Browsing behavior or tracking cookies. We do not use advertising trackers, behavioral analytics, or third-party tracking scripts.

03 What We Do Collect

Data	Why we collect it	How long we keep it
Email address	Account creation, billing receipts, service communications	Until account deletion
Payment information	Processing subscriptions and one-time purchases	Handled and stored by Stripe — we never see your card number
Billing name and address	Required for payment processing and tax compliance	Until account deletion or as required by law
Usage metadata	Audit count for plan enforcement (we count audits, not content)	Duration of account
Server function logs	Debugging and error tracking (logs contain vendor type and config character count, never config content)	24 hours (Netlify default retention)

04 How Your Configuration Is Processed

When you submit a configuration for audit, the following occurs:

Your browser sends the configuration text to our Netlify serverless function over an encrypted HTTPS connection.
The function automatically redacts common secret patterns including passwords, pre-shared keys, and SNMP community strings before any further processing.
The redacted configuration is sent to the Anthropic API (the AI provider powering our audit engine) over an encrypted connection, along with our audit instructions. Anthropic processes this request and returns the analysis.
The audit report is streamed back to your browser.
The configuration text is discarded. Neither we nor our function retains it.

For information on how Anthropic handles API data, please see Anthropic's Privacy Policy. Anthropic does not use API inputs to train its models by default.

05 Payment Processing

All payment processing is handled by Stripe, Inc. We do not store, see, or have access to your full credit card number, CVV, or bank account details. Stripe provides us with a tokenized representation of your payment method for recurring billing purposes.

By making a purchase, you agree to Stripe's terms of service and privacy policy.

06 Third-Party Services

FirewallIQ uses the following third-party services:

Netlify — hosting, serverless functions, and CDN. Netlify Privacy Policy
Anthropic — AI audit engine via API. Anthropic Privacy Policy
Stripe — payment processing. Stripe Privacy Policy
Google Fonts — typography (IBM Plex Sans, IBM Plex Mono, Space Grotesk). Google may log font requests. Google Privacy Policy

We do not sell, rent, or share your personal data with any third parties beyond those listed above and only to the extent necessary to provide the Service.

07 Data Security

We implement reasonable technical measures to protect your personal information, including TLS encryption for all data in transit. However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your data using industry-standard practices.

08 Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Access. Request a copy of the personal data we hold about you.
Correction. Request correction of inaccurate personal data.
Deletion. Request deletion of your account and associated personal data.
Portability. Request your data in a portable format.
Objection. Object to certain processing of your personal data.

To exercise any of these rights, contact us at privacy@firewalliq.io. We will respond within 30 days.

09 California Privacy Rights (CCPA)

If you are a California resident, you have the right to know what personal information we collect, request deletion of your personal information, and opt out of the sale of your personal information. We do not sell personal information. To exercise your rights, contact us at privacy@firewalliq.io.

10 Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

11 Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top of this page. For material changes, we will notify active subscribers by email. Your continued use of the Service after changes are posted constitutes your acceptance of the revised policy.

12 Contact

For privacy-related questions or requests:

Treesh Tech LLC
Fort Wayne, Indiana
privacy@firewalliq.io