Molar Labs — legal
Privacy Policy
This policy explains how Molar Labs (“Molar”, “we”, “us”) collects and uses personal information when you visit molar.it, use app.molar.it, or otherwise interact with our autonomous QA platform (Cartographer, Guard, Clones, Trace, and related services).
Early-stage product. Molar is under active development. This policy describes our current practices in plain language and will be updated as features and data flows evolve. We do not sell personal information. Questions, corrections, or DPA requests: pratik@molar.it.
01 — OverviewWho this applies to
We process personal information about website visitors, account holders and team members who use the Molar product, and individuals who contact us (for example via email or Calendly). When you use Molar to test your own application, we also process customer content — URLs, recordings, traces, and related artifacts — on your instructions. For that customer content, you are typically the data controller and Molar acts as a processor.
Molar is currently offered as an early-access product. Features, subprocessors, and retention defaults may change as we ship. We will update this policy when our practices materially change and note the effective date at the top of this page.
02 — CollectionInformation we collect
Account and profile data. Name, work email, organization name, authentication identifiers, role, and billing contact details when you register or are invited to a workspace.
Product usage data. Commands run, feature usage, configuration, API calls, job metadata, error logs, and performance diagnostics needed to operate and improve the service.
Customer content. Application URLs you submit, crawl maps, test scenarios, Playwright exports, Guard results, Trace recordings, screenshots, network captures, and clone configuration — solely to provide the service you request.
Website and communications. IP address, browser type, device information, pages viewed, referral source, and messages you send to pratik@molar.it or through scheduling tools (e.g. Calendly).
Integrations. If you connect GitHub or other third-party services, we receive the tokens, repository metadata, and webhook payloads needed for that integration — not more than required for the feature.
We do not intentionally collect sensitive categories of data (health, biometrics, etc.) and ask that you do not submit them through the product unless we have agreed otherwise in writing.
03 — UseHow we use information
- Provide, secure, and troubleshoot the Molar platform
- Authenticate users and administer workspaces
- Run crawls, guards, clones, and traces you configure
- Send service notices, security alerts, and support responses
- Improve reliability, develop features, and understand aggregate usage
- Comply with law, enforce our Terms of Service, and prevent abuse
Legal bases (EEA/UK). Where GDPR applies, we rely on: contract (to deliver the service), legitimate interests (security, product improvement, B2B marketing to existing prospects), consent where required (e.g. non-essential cookies), and legal obligation when applicable.
05 — RetentionHow long we keep data
We retain personal information for as long as your account is active or as needed to provide the service. Customer content (traces, recordings, crawl artifacts) is retained according to your workspace settings and plan, then deleted or anonymized unless we must keep it for legal, security, or billing purposes. Website logs are typically retained for a limited period (generally under 90 days) unless longer retention is required for incident investigation.
06 — RightsYour choices and rights
Depending on where you live, you may have the right to access, correct, delete, restrict, or export personal information, and to object to certain processing. California residents may have additional rights under the CCPA/CPRA, including knowing what categories we collect and requesting deletion. We do not sell or share personal information for cross-context behavioral advertising.
To exercise rights, email pratik@molar.it. We will verify your request and respond within applicable timeframes (typically 30 days). You may also lodge a complaint with your local supervisory authority.
If you are an end user of a customer’s application and believe we process your data on their behalf, please contact that customer first; we will assist them as their processor.
07 — CookiesCookies and similar technologies
Our marketing site uses minimal cookies — primarily for essential operation and fonts loaded from Google Fonts. The product at app.molar.it uses session and authentication cookies required to keep you signed in. Third-party embeds (such as Calendly) may set their own cookies under their policies. You can control cookies through browser settings; disabling essential cookies may limit product functionality.
08 — SecurityHow we protect data
We use administrative, technical, and organizational measures appropriate to an early-stage B2B SaaS product — encryption in transit, access controls, least-privilege internal access, and monitoring. We are continuously improving security as the product matures. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.
09 — TransfersInternational transfers
Molar Labs is based in India. We and our subprocessors may process data in India, the United States, the European Union, and other countries. Where required, we use appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.
10 — ChildrenChildren’s privacy
The service is not directed to children under 16 (or the age required in your jurisdiction). We do not knowingly collect personal information from children.
11 — ChangesUpdates to this policy
We may update this policy when our practices change. We will post the revised version on this page with a new effective date. Material changes to how we process personal information will be communicated via email or in-product notice where appropriate.
12 — ContactQuestions
Molar Labs
Bengaluru, India
pratik@molar.it