How clean is that app with your data?
Like a nutrition label for your privacy. We scan any app or website ourselves and check five things it does with your data — then grade it A to F by how many checks it passes. Observed, not vibes.
3 of 3 free lookups left this week
We load the site and check it's served over HTTPS so the connection can't be sniffed or downgraded. We also note whether it enforces that with HSTS.
We count how many outside domains the site pulls in on load. Fewer third parties in the request means fewer hands on your data.
We watch what it sets on load and check whether it drops third-party tracking cookies that follow you across the web.
We check every domain it contacts against DLTD's own blocklist of known adversarial-state (Russia, China, Iran) tracking infrastructure.
We check whether the company is a registered data broker. If it sells personal data, the grade is capped at D no matter how clean the site looks.
Every signal is observed by DLTD’s own scan — no third party, no LLM, no guessing — and the grade is simply how many of the five checks pass. Two business-model caps then sit on top: a registered data broker is capped at D, and a company built on surveillance advertising (or with documented invasive data practices) is capped at D as well — because a clean marketing site can’t redeem that, and a homepage scan can’t see what an app does once you log in. If we haven’t scanned an app yet, we say “not scored” — we never make a grade up.