Back

Privacy Policy

Last updated: April 12, 2026

1. Overview

HD Deal Scanner ("we", "us", "our") operates the website at deals.tomstein.org. This Privacy Policy describes how we collect, use, and protect information in connection with our deal-scanning and notification service.

2. Information We Collect

Account Information

We store a username and a securely hashed password for authentication. We do not collect email addresses through the web interface.

Phone Numbers

If you opt into SMS notifications, we store your phone number solely to deliver deal alerts via Twilio's messaging service.

Usage Data

We log scan history (timestamps, store IDs, deal counts) to provide the scan log feature. Standard web server access logs (IP address, user agent, request path) are retained for security and operational purposes.

Deal Data

Product information (item IDs, prices, descriptions) is collected from publicly available Home Depot product listings and stored locally to track deals over time.

3. How We Use Information

  • To authenticate users and maintain sessions
  • To send SMS deal notifications to opted-in phone numbers
  • To display deal history and scan results in the dashboard
  • To monitor and maintain the security of the service

4. Third-Party Services

Twilio

SMS notifications are delivered through Twilio. Your phone number is transmitted to Twilio for message delivery. Twilio's privacy policy is available at twilio.com/legal/privacy.

Home Depot

Product and pricing data is retrieved from Home Depot's publicly available website. We are not affiliated with, endorsed by, or sponsored by The Home Depot, Inc.

CDN Resources

The web interface loads Tailwind CSS, Alpine.js, and Google Fonts from third-party CDNs. These services may collect standard web analytics data (IP address, browser type) according to their respective privacy policies.

5. Data Storage & Security

All data is stored locally on our server in an encrypted-at-rest SQLite database. Passwords are hashed using bcrypt. Sessions are protected with HttpOnly, Secure, and SameSite cookie flags. All traffic is encrypted via TLS (HTTPS).

6. Data Retention

Deal records are retained indefinitely to provide historical price tracking. Scan logs are retained indefinitely. You may request deletion of your data by contacting us.

7. Your Rights

You may request access to, correction of, or deletion of your personal data at any time. To opt out of SMS notifications, contact us to have your phone number removed.

8. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date.

9. Contact

For questions about this Privacy Policy, contact us at deals.tomstein.org.

Terms & Conditions Sign In