Privacy Policy

Last updated: February 2026

Introduction

NookScan Protocol™ (“NookScan,” “we,” “our,” or “us”) is operated by Notary Nook of Chicago, LLC, a limited liability company organized under the laws of the State of Illinois. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our compliance analysis platform at getnookscan.com. By using the Service, you consent to the data practices described in this policy.

Information We Collect

We collect the following categories of information:

  • Account Information: Name, email address, and profile photo provided by your Google or Apple sign-in provider.
  • Uploaded Documents: PDF files you submit for compliance analysis, including text content extracted during processing.
  • Usage Data: Scan history, compliance scores, subscription status, feature usage, timestamps, and interaction data within the platform.
  • Payment Information: Billing details processed securely through Stripe. We do not store, access, or retain credit card numbers, bank account numbers, or other sensitive financial data on our servers.
  • Device & Technical Data: Browser type, operating system, IP address, and general location data used for security monitoring and service optimization.

How We Use Your Data

Your data is used exclusively for the following purposes:

  • Compliance Analysis: Processing uploaded documents through our 10 proprietary analysis engines to generate compliance reports, correction recommendations, and risk assessments.
  • Account Management: Maintaining your user profile, scan history, subscription status, and billing records.
  • Service Improvement: Understanding aggregate, anonymized usage patterns to improve our analysis engines, user experience, and platform reliability.
  • Communication: Sending account-related notifications including subscription confirmations, payment receipts, service updates, and security alerts.
  • Security & Fraud Prevention: Monitoring for unauthorized access, abuse, or fraudulent activity on the platform.

We do not sell, rent, trade, or share your personal information with third parties for marketing or advertising purposes. Your uploaded documents are never used to train AI models and are never shared with AI model providers.

AI & Technology Data Practices

NookScan Protocol uses artificial intelligence and deterministic rule-based analysis to process your documents. The following data practices apply to our AI systems:

  • Documents are analyzed by proprietary engines running on secure cloud infrastructure.
  • Analysis data, including extracted text, detected issues, and generated corrections, is used solely to produce your compliance report.
  • Document data is not used to train, fine-tune, or improve any AI models, whether ours or third-party.
  • Analysis results are not shared with AI model providers, machine learning platforms, or any external systems beyond what is necessary to deliver the Service.
  • Each scan produces a deterministic output — identical inputs always produce identical results.

Data Retention

Uploaded documents are retained only for the duration necessary to complete analysis and generate your compliance report. Completed scan reports are stored in your account history for as long as your account remains active. You may request deletion of specific scans or your entire data at any time by contacting support@getnookscan.com.

When you delete your account, all associated personal data, scan history, uploaded documents, and compliance reports are permanently and irreversibly removed within 30 days.

Data Security

We implement industry-standard security measures to protect your information, including:

  • Encryption of data in transit using TLS/SSL protocols.
  • Encryption of data at rest on secure cloud infrastructure.
  • Access controls limiting employee and system access to personal data on a need-to-know basis.
  • Regular security monitoring and logging for unauthorized access attempts.
  • Secure authentication through Google and Apple sign-in providers.
  • Payment processing handled entirely by Stripe, which is PCI DSS Level 1 certified.

While we take reasonable measures to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your information.

Third-Party Services

We use the following third-party services to operate NookScan Protocol:

  • Firebase (Google Cloud): Authentication, database, and file storage infrastructure. Governed by Google's Privacy Policy.
  • Google Cloud Platform: Secure document processing and analysis compute infrastructure. Governed by Google Cloud's Terms of Service.
  • Stripe: Payment processing for subscriptions. Stripe is PCI DSS Level 1 certified. Governed by Stripe's Privacy Policy.
  • Google and Apple Sign-In: Authentication providers for account creation and login. Governed by their respective privacy policies.

Each third-party provider maintains its own privacy practices and is bound by its respective data protection obligations. We only share the minimum data necessary for each service to function.

Cookies & Local Storage

NookScan Protocol uses essential cookies and local storage required for authentication and session management. We do not use advertising cookies, third-party tracking cookies, or analytics cookies that track you across other websites. Firebase Authentication uses local storage and session cookies to maintain your signed-in state. Our platform does not respond to “Do Not Track” browser signals, as we do not engage in cross-site tracking.

Your Rights

You have the right to:

  • Access the personal information we hold about you.
  • Correct or update inaccurate personal information.
  • Delete your personal information and account data.
  • Export your scan history and compliance reports.
  • Withdraw consent for data processing at any time.
  • Object to processing of your personal information.
  • Lodge a complaint with a relevant supervisory authority if applicable.

To exercise any of these rights, contact us at support@getnookscan.com. We will respond to your request within 30 days.

California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: You may request details about the categories and specific pieces of personal information we have collected about you in the preceding 12 months.
  • Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
  • Right to Opt-Out of Sale: We do not sell your personal information. We have not sold personal information in the preceding 12 months.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights.

To submit a request, email support@getnookscan.com with the subject line “CCPA Request.”

Children's Privacy

NookScan Protocol is not intended for use by individuals under the age of 18. We do not knowingly collect, store, or process personal information from minors. If we become aware that we have collected data from a person under 18, we will take immediate steps to delete that information. If you believe a minor has provided us with personal data, please contact us at support@getnookscan.com.

International Users

NookScan Protocol is operated in the United States. If you access the Service from outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country of residence. By using the Service, you consent to the transfer and processing of your data in the United States.

Data Breach Notification

In the event of a data breach that affects your personal information, we will notify affected users within 72 hours of becoming aware of the breach. Notification will be sent via email to the address associated with your account. The notification will include the nature of the breach, the types of data affected, steps we are taking to address it, and recommended actions you can take to protect yourself.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our data practices, legal requirements, or business operations. Material changes will be communicated via email or a prominent notice on the Service at least 14 days before taking effect. Your continued use of NookScan Protocol after changes take effect constitutes acceptance of the revised policy. We encourage you to review this policy periodically.

Contact Us

If you have questions about this Privacy Policy, wish to exercise your data rights, or have concerns about our data practices, contact us at:

Email: support@getnookscan.com

Company: Notary Nook of Chicago, LLC
Location: Chicago, Illinois
Website: getnookscan.com