transparency leaderboard
Policy claims vs. observed reality.
Every site, every scan.
The list below shows the current state of 57 sites. Each row links to a full audit with the evidence, the scan timestamp, and a permalink that survives future re-scans.
We audit every site on this leaderboard from the outside, using only what any visitor can see. We do not accept payment to include, exclude, or adjust any rating. Every finding links to its evidence and its scan timestamp. The methodology is public and versioned.
batch scan
mismatch
9
warn
40
aligned
8
- 1Password password manager
Policy says no advertising, but ad trackers were loaded
mismatch - Typeform form builder
Functional data handling without policy transparency
mismatch - Auth0 identity
Adobe Tag Manager loaded but not named in vendor list
mismatch - Fly.io hosting
Google Tag Manager not disclosed in privacy policy
mismatch - Heroku hosting
Parsely analytics loaded but not named in policy
mismatch - Loom video
Policy uses Atlassian boilerplate; does not name observed vendors
mismatch - Railway hosting
Google Tag Manager deployment not disclosed in privacy policy
mismatch - Vercel hosting
Clearbit API calls not disclosed in named third parties
mismatch - WorkOS identity
Named analytics vendors absent from observed tech stack
mismatch - Asana project management
Session replay tools detected
warn - Mixpanel product analytics
Session replay tools detected
warn - Notion productivity
Session replay tools detected
warn - Dashlane password manager
No privacy policy found
warn - Bitwarden password manager
No privacy policy found
warn - Render hosting
Observed vendors not named in policy
warn - Resend transactional email
No privacy policy found
warn - GitLab devops
No privacy policy found
warn - Hotjar session replay
Session replay tools detected
warn - HubSpot crm
No privacy policy found
warn - Airtable productivity
Observed vendors not named in policy
warn - Amplitude product analytics
Observed vendors not named in policy
warn - Front customer support
No privacy policy found
warn - Ghost publishing
No privacy policy found
warn - Okta identity
Observed vendors not named in policy
warn - Retool internal tools
Observed vendors not named in policy
warn - Segment customer data platform
Observed vendors not named in policy
warn - Cloudflare infrastructure
Observed vendors not named in policy
warn - Figma design tools
Observed vendors not named in policy
warn - Heap product analytics
Observed vendors not named in policy
warn - Mailchimp email marketing
No HSTS header
warn - Monday.com project management
Observed vendors not named in policy
warn - Pipedrive crm
No privacy policy found
warn - Postmark transactional email
No privacy policy found
warn - Calendly scheduling
Observed vendors not named in policy
warn - ConvertKit email marketing
No privacy policy found
warn - Help Scout customer support
No privacy policy found
warn - Intercom customer support
Observed vendors not named in policy
warn - LogRocket session replay
Observed vendors not named in policy
warn - Netlify hosting
Observed vendors not named in policy
warn - Plausible analytics
No HSTS header
warn - Proton privacy suite
No privacy policy found
warn - SendGrid transactional email
No privacy policy found
warn - Sentry error tracking
Observed vendors not named in policy
warn - Slack communication
Observed vendors not named in policy
warn - Twilio communication
No privacy policy found
warn - Zendesk customer support
No privacy policy found
warn - Brave browser
No privacy policy found
warn - Clerk identity
Session replay without CSP protection
warn - DuckDuckGo privacy search
No privacy policy found
warn - Linear project management
Observed stack aligns with policy disclosures.
aligned - Datadog observability
Observed stack aligns with policy disclosures.
aligned - Zapier automation
Observed stack aligns with policy disclosures.
aligned - GitHub devops
No tracking or analytics observed. Policy matches.
aligned - PostHog product analytics
No tracking or analytics observed. Policy matches.
aligned - Stripe payments
No tracking or analytics observed. Policy matches.
aligned - Supabase backend
No tracking or analytics observed. Policy matches.
aligned - Trello project management
No tracking or analytics observed. Policy matches.
aligned