MOORLI
Home About Pricing Contact Terms Privacy
Legal

Privacy Policy

Effective Date: January 1, 2026

1. Overview

MOORLI LLC ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our diagnostic services, including MOORLI BrandGuardDiagnostic and MOORLI VendorRiskDiagnostic (collectively, the "Services").

By using our Services, you consent to the data practices described in this policy. If you do not agree with the terms of this Privacy Policy, please do not access the Services.

2. Information We Collect

Account Information: When you create an account or make a purchase, we collect your name, email address, and payment information (processed via Stripe).

Service Data:

  • MOORLI BrandGuardDiagnostic: We collect the brand domain you submit for analysis. We then generate and rank lookalike candidates and query publicly available DNS records, WHOIS/RDAP data, SSL certificates, web content, and selected external corroboration signals to assess selected candidates up to your plan limit.
  • MOORLI VendorRiskDiagnostic: We collect domain names you submit for analysis. We then query publicly available DNS records (such as MX, SPF, DMARC, MTA-STS, TLS-RPT, and discovered DKIM selectors where observable), plus lightweight public-web validation where relevant, registration-context data, and selected external risk/corroboration signals, to assess outside-in vendor email-security posture.

Usage Data: We automatically collect information about how you interact with our Services, including IP address, browser type, pages viewed, and timestamps.

3. How We Use Information

We use collected information to:

  • Provide, operate, and maintain the Services
  • Generate and deliver audit reports
  • Process payments and send transactional communications
  • Respond to support requests
  • Improve and optimize the Services
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

4. Information Sharing

We do not sell your personal information. We may share information with:

  • Service Providers: Third parties that help us operate the Services (e.g., Stripe for payments, cloud hosting providers).
  • Legal Requirements: When required by law, court order, or government request.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets.
  • With Your Consent: When you explicitly authorize sharing.

5. Data Retention

We retain your data only as long as necessary to fulfill the purposes described in this policy:

  • Account data: Retained while your account is active. Audit metadata (such as domain lists, scores, and timestamps) is retained to display your audit history unless you request deletion (subject to legal retention requirements and backup retention).
  • Audit reports: Generated report files may be stored for approximately 90 days in secure cloud storage to allow dashboard access and downloads. After that period, report files may be automatically deleted.
  • Payment records: Retained as required by applicable tax and accounting regulations.
  • Backups & logs: Limited backups and security logs may persist for a reasonable period for reliability, fraud prevention, and operational recovery.

6. Security

We implement industry-standard security measures to protect your information, including:

  • TLS/SSL encryption for all data in transit
  • Encryption at rest for stored data
  • Access controls limiting data access to authorized personnel
  • Regular security assessments and monitoring

No method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Your Rights

Depending on your location, you may have rights regarding your personal information:

  • Access: Request a copy of the data we hold about you.
  • Correction: Request correction of inaccurate data.
  • Deletion: Request deletion of your data (subject to legal retention requirements).
  • Portability: Request a copy of your data in a machine-readable format.
  • Opt-out: Opt out of marketing communications at any time.

To exercise these rights, contact us at support@moorli.io.

8. Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain session state and authentication
  • Remember your preferences
  • Analyze usage patterns to improve the Services

You can control cookies through your browser settings. Disabling cookies may affect functionality.

9. Third-Party Services

Our Services integrate with third-party platforms:

  • Stripe: For payment processing. See Stripe's Privacy Policy.
  • Selected external corroboration services: Used as corroborating inputs for certain outside-in risk checks where applicable. For BrandGuard, third-party threat intelligence is used as one factor within BrandGuard's own scoring and findings and is not redistributed verbatim.

We are not responsible for the privacy practices of third-party services.

10. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have different data protection laws. By using the Services, you consent to such transfers.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by a revised effective date. We encourage you to review this policy periodically.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Email: support@moorli.io

MOORLI LLC
Minneapolis, MN, USA