Privacy Policy

Privacy Policy Last updated: October 19, 2025
This Privacy Policy describes how Golden Goose Tech LLC, doing business as QAWrangler (“Company,” “we,” “us,” or “our”), collects, uses, shares, and protects personal information when you visit our website, communicate with us, or use our QA-as-a-Service offerings (the “Services”). By using the Services, you consent to this Policy.
1. Who we are Legal entity: Golden Goose Tech LLC, dba QAWrangler Address: 4325 Avenida Simi, Simi Valley, CA 93063 Email: support@qawrangler.com
2. Information we collect We collect only what we need to provide and improve the Services. • Contact details: name, company, role, email, and other info you provide when you inquire, subscribe, or onboard. • Account and project information: test environments/URLs, acceptance criteria, API endpoints, logs, screenshots, screen recordings, staging credentials (strongly prefer test-only credentials), and related documentation. • Billing information: handled by our payment processor (e.g., Stripe). We do not store full card numbers. • Communications: messages you send via email, chat, or ticketing tools (e.g., Jira, Trello, Slack, Teams). • Usage data: IP address, device/browser type, pages visited, timestamps, and general analytics collected via cookies or similar technologies. We do not knowingly collect information from anyone under 18.
3. How we use information We use collected information to: • Provide, operate, and improve the Services and our website. • Authenticate access to test environments and dashboards. • Communicate about projects, invoices, security notices, and updates. • Create test plans, execute tests, generate reports, and maintain automation. • Monitor usage to protect security and prevent abuse. • Comply with law and enforce our Terms & Conditions.
4. Legal bases for processing (EEA/UK) Where applicable, we rely on: performance of a contract, legitimate interests (e.g., service improvement, security), consent (e.g., certain cookies/marketing), and legal obligations.
5. Cookies and analytics We use basic cookies and similar technologies to run the site and understand traffic. You can control cookies through your browser settings. If you disable cookies, some features may be limited. We may use privacy-respecting analytics to understand aggregate usage; we do not sell your data.
6. Sharing information with third parties We do not sell or rent personal data. We may share limited information with: • Service providers and subprocessors that help us operate (e.g., Stripe for payments; BrowserStack for device/browser testing; Jira/Trello for ticketing; Slack/Microsoft Teams for communications; GitHub/GitLab/CI for repositories and pipelines; cloud hosting and email providers). These parties are contractually bound to use data only to provide services to us. • Professional advisors (e.g., accountants, lawyers) under confidentiality. • Authorities, regulators, or others if required by law or to protect rights, safety, and security. • Successors in interest in connection with a merger, acquisition, or similar transaction (subject to this Policy or a policy at least as protective).
7. Data security We maintain reasonable administrative, technical, and physical safeguards appropriate to the nature of the data and our Services. Access to client test data is limited to authorized personnel on a need-to-know basis. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.
8. Data retention and deletion We keep project-related information only as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. On request or upon project end, we will delete or return Client Materials within a reasonable period (typically 30 days), except where retention is required by law or legitimate business needs (e.g., audit logs, invoices).
9. Test data and production data Clients should provide de-identified or test-only data whenever possible. We discourage sharing production credentials or live personal data. If processing of personal data is required, we can execute a Data Processing Addendum (DPA) on request that governs roles, security measures, and subprocessors.
10. International transfers We are based in the United States. If you access the Services from outside the U.S., you understand your information may be transferred to and processed in the U.S., where privacy laws may differ from those in your region. Where required, we implement appropriate safeguards for cross-border transfers.
11. Your privacy rights Depending on your location, you may have rights to: • Access, correct, or delete your personal information. • Object to or restrict certain processing. • Withdraw consent where we rely on consent. • Request a copy of your data in portable format. To exercise rights, contact support@qawrangler.com. We may need to verify your identity and may be unable to fulfill requests that would compromise others’ privacy or our legal obligations.
California residents (CCPA/CPRA): You have rights to know, delete, correct, and limit use of sensitive personal information, and to not be discriminated against for exercising your rights. We do not sell or share personal information for cross-context behavioral advertising. Submit requests to support@qawrangler.com.
EEA/UK residents (GDPR): You may lodge a complaint with your local supervisory authority if you believe our processing violates applicable law.
1. Do Not Track and opt-out preferences Many browsers offer “Do Not Track” (DNT). Our website does not currently respond to DNT signals. You can manage cookies in your browser and opt out of marketing emails using unsubscribe links or by contacting us.
2. Third-party links Our site or reports may include links to third-party sites or tools we do not control. Their privacy practices govern their sites; we encourage you to review those policies.
3. Children’s privacy Our Services are not directed to children under 13 (or under 16 in certain jurisdictions). We do not knowingly collect personal information from children. If you believe a child has provided personal information, contact us and we will delete it.
4. Changes to this Policy We may update this Policy from time to time. When we do, we will revise the “Last updated” date above. Continued use of the Services after an update means you accept the revised Policy.
5. Contact us Golden Goose Tech LLC (QAWrangler) 4325 Avenida Simi, Simi Valley, CA 93063 support@qawrangler.com
Data Processing Addendum (DPA) available on request.