Last updated: May 4, 2026
ADA CodeFix is a web accessibility scanning tool. This page explains, at a high level, what data the Service handles and how we protect it. For full details about personal data and your rights, see our Privacy Policy.
When you submit a URL to be scanned, our backend fetches the page and runs the open-source axe-core engine against it. We may keep a record of the URL, the scan results (issues identified, severity, page metadata), and a generated report ID so you can share or revisit the report. Submitted URLs are intended to be public web pages that you control or have permission to test. Do not submit private URLs containing sensitive information that you do not want stored as part of a scan record.
If you create an account, we store your email address and a hashed password in a managed Supabase Postgres database. We never store plaintext passwords. Authentication tokens are short-lived JWTs handled by Supabase Auth.
Payments are processed by Stripe. Card numbers are collected directly by Stripe and never touch our servers. We store only a non-sensitive Stripe customer identifier and subscription status to know which plan your account is on.
All connections to adacodefix.com use HTTPS with TLS. Communication with Supabase, Stripe, and our AI provider is over TLS as well.
When we generate a code suggestion for an accessibility issue, we send the relevant HTML element and the WCAG rule context to a third-party AI provider. We do not send your account email, customer ID, or any payment information as part of this request. AI providers operate under their own privacy and data-handling policies.
The ADA CodeFix Chrome extension runs entirely on your machine. It does not transmit your browsing data, scan results, or any other personal data to our servers. See our Privacy Policy for the full Chrome-extension data statement.
Account data is retained while your account is active. Scan reports are retained to support shareable links. You can request that we delete your account and associated scan history at any time by emailing hello@adacodefix.com. Backup copies are purged on a routine rolling basis.
If you believe you've found a vulnerability in our Service, please email hello@adacodefix.com with a description and any reproduction steps. Please do not publicly disclose the issue before we've had a reasonable opportunity to investigate and address it. We appreciate good-faith security research.
No system is fully impenetrable. We use commercially reasonable safeguards (managed infrastructure, TLS, hashed passwords, principle-of-least-privilege access), but we do not guarantee that data will be free from unauthorized access, loss, or alteration. Use the Service with that in mind.