Contact Us

We're here to help. Browse answers below or reach our team directly.

For all enquiries — technical, billing, business, or compliance-related:

[email protected]

We aim to respond within 1–2 business days. For critical production issues, mention "URGENT" in the subject line.

How can we help?

Technical Issues

Scanner errors, false positives, report generation problems. Include your scan ID and error message when writing to us.

Billing & Licensing

License activation, plan upgrades, invoice requests, or payment issues. Quote your registered email and order reference for fastest resolution.

Business & Enterprise Business

Volume licensing, custom SLAs, white-label deployments, air-gapped or on-premises installations, and procurement questions. Email us to start a conversation.

Compliance & Audit Business

GDPR, CCPA, ISO 27001, PCI-DSS, or FedRAMP-related reporting questions. We can provide evidence packs and scope clarifications for audit engagements.

Security Disclosures

Found a vulnerability in WebScanify? Please email [email protected] with subject "Security Disclosure". We practice responsible disclosure and aim to acknowledge reports within 2-3 business days.

Partnerships

Reseller agreements, integration partnerships, and co-marketing opportunities. Reach out and tell us about your organisation and goals.

Send Us a Message
Frequently Asked Questions
How long does a scan take?
Most scans complete in 3–10 minutes. Scans with port scanning, subdomain enumeration, and injection testing can take up to 15 minutes depending on target complexity. Free and paid scans run the same checks and take the same time.
Do I need permission to scan a domain?
Yes — for every scan, free or paid. You must own the domain or hold explicit written authorisation from the owner. This is confirmed via the authorisation checkbox at scan submission. Scanning without permission may be illegal in your jurisdiction.
What does the GDPR/compliance score mean?
The compliance score covers only the technically verifiable subset (~10–15%) of each framework — things like HTTPS enforcement, security headers, and cookie attributes. A full compliance certification requires a legal/organisational review by a qualified auditor. The score is a useful starting point, not a certification.
Can I export reports for my clients?
Yes. Reports are exportable as PDF (full branded report), DOCX, JSON, and SARIF (for CI/CD integration). PDF reports include an executive summary, full vulnerability list, and per-framework compliance pages.
Does my data leave my server?
No. WebScanify is fully self-hosted. All scan data, credentials, and results stay on your own infrastructure. The only external calls are DNS lookups and CVE database checks against the NVD API.
How do I upgrade my plan?
Visit the Pricing page to purchase or upgrade a license. Your license key is emailed to you and can be activated under your account settings. For volume or enterprise licensing, contact [email protected].
I found a false positive — what should I do?
Use the contact form above or email [email protected] with the scan ID, the finding name, and why you believe it is a false positive. We continuously improve detection accuracy based on feedback.