DOMAIN QUESTDOMAIN QUESTDOMAIN QUEST
Start Free

Privacy Policy

Last updated: June 29, 2025

Introduction

Domain Quest ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our domain discovery platform at domainquest.io (the "Service").

By using our Service, you agree to the collection and use of information in accordance with this Privacy Policy.

Information We Collect

Personal Information

When you register for an account, we collect:

  • Email address
  • Name (optional)
  • Password (encrypted)
  • Billing information (processed securely through Stripe)

Usage Information

We automatically collect:

  • Domain search queries and generation history
  • Saved domains and watchlist preferences
  • Service usage patterns and feature interactions
  • IP address and browser information
  • Device and operating system information

Cookies and Tracking

We use cookies and similar tracking technologies to maintain your session, remember your preferences, and analyze usage patterns. You can control cookie settings through your browser.

How We Use Your Information

We use the collected information to:

  • Provide and maintain our domain discovery Service
  • Process domain availability checks through WHOIS APIs
  • Generate AI-powered domain suggestions
  • Send service-related emails (password resets, subscription updates)
  • Monitor and analyze usage to improve our Service
  • Detect and prevent fraudulent or unauthorized activity
  • Comply with legal obligations

Information Sharing

We do not sell, trade, or rent your personal information. We may share your information with:

Service Providers

  • Supabase: Database and authentication services
  • Stripe: Payment processing
  • OpenAI: AI domain generation (queries only, no personal data)
  • WHOIS API: Domain availability checking
  • Resend: Transactional email delivery
  • Vercel: Hosting and deployment

Legal Requirements

We may disclose information if required by law, court order, or government regulation, or if we believe disclosure is necessary to protect our rights or the safety of our users.

Data Security

We implement industry-standard security measures to protect your information:

  • SSL/TLS encryption for all data transmissions
  • Encrypted password storage using bcrypt
  • Secure payment processing through Stripe (PCI-DSS compliant)
  • Regular security audits and updates
  • Limited access to personal information by authorized personnel only

Admin-Blind Encryption

Domain Quest implements admin-blind encryption to ensure your domain ideas remain completely private. This advanced security feature means:

  • Zero-Knowledge Architecture: Even our administrators cannot see what domains you're searching for or saving
  • Military-Grade Encryption: We use AES-256-GCM encryption, the same standard used by banks and governments
  • User-Specific Keys: Each user gets a unique encryption key derived from their user ID - your data is cryptographically isolated
  • Complete Privacy: Domain names, prompts, notes, and all sensitive data are encrypted before storage
  • Trust by Design: Privacy is built into our core architecture, not added as an afterthought

This means your domain ideas are protected from:

  • Internal access by our team members
  • Data breaches (encrypted data is useless without your unique key)
  • Domain sniping or competitive intelligence gathering
  • Unauthorized access or surveillance

Your Rights and Choices

You have the right to:

  • Access: Request a copy of your personal information
  • Update: Correct or update your account information
  • Delete: Request deletion of your account and associated data
  • Export: Download your domain lists and search history
  • Opt-out: Unsubscribe from marketing communications

To exercise these rights, contact us at support@domainquest.io.

Data Retention

We retain your information for as long as your account is active or as needed to provide our Service. After account deletion, we may retain certain information as required by law or for legitimate business purposes (e.g., fraud prevention, resolving disputes).

International Data Transfers

Our Service is operated from the United States. If you access our Service from outside the United States, your information may be transferred to and processed in the United States or other countries where our service providers operate.

Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete personal information, and the right to opt-out of the sale of personal information (which we do not do).

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Your continued use of our Service after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us:

Email: support@domainquest.io
Website: domainquest.io/contact