OneShot · Terms & Policies

Refund policy & service guarantee

Straight talk on what your $19 covers, what we will deliver, what we cannot guarantee, and when refunds apply. No legal fluff — the same language we’d use in a Stripe dispute.

Important — please read

GalaxyWarden does not guarantee that any specific attack will be prevented. We remove personal information from data broker websites and scan breach databases for compromised credentials. These actions reduce the data available for common attack patterns documented by the FBI Internet Crime Complaint Center, NIST, and security researchers. Outcomes vary based on individual circumstances. We make no representation that any specific account, transaction, or identity will remain secure. Continue to follow standard security hygiene (unique passwords, two-factor authentication, vigilance against phishing) in addition to using our service.

1What we guarantee

Your $19 buys these commitments. We log every step with timestamps, so this is verifiable, not aspirational:

We will file authorized-agent removal requests across 800+ broker sites on your behalf, under CCPA §1798.135(c) and the equivalent statutes in every state that recognizes consumer agents.

First filings begin the moment we detect your data in a broker’s system — typically within minutes of TPA signing. We do not batch or queue your removal package.

We will verify removal status at day 30 and email you a wrap-up confirming completed broker requests. For any broker that hasn’t honored the opt-out by day 45 (the CCPA deadline), we automatically resubmit and continue pursuing it — until it’s resolved, the broker formally refuses (rare), or escalation paths run out.

Your online exposure will be reduced — quantifiably. Reduction is measured by the count of confirmed opt-outs in your day-30 wrap-up report. If we can’t demonstrate confirmed opt-outs, refunds are at customer-support discretion.

You will receive a full breach + dark-web exposure report cross-referenced against 15B+ leaked records, with step-by-step remediation guidance for every confirmed exposure (password rotations, account locks, identifier retirement).

If a broker rejects our authorized-agent submission, we resubmit at no additional cost until either the broker honors the request, formally refuses (rare under CCPA), or the day-30 verification window closes.

2What we don’t guarantee

The honest part. Anyone promising you 100% removal across every broker on the internet is lying:

We cannot force a broker to comply. CCPA gives brokers 45 days to honor or reject. Most do; a small handful never respond. We document every non-responder in your day-30 wrap-up.

We cannot remove breach-corpus data. Once your email + password show up in a HIBP dump, Pastebin paste, or dark-web marketplace, that data is permanently public. We surface it in your exposure report and give you the playbook to neutralize it (rotate, lock, retire) — but we cannot delete it from the breach corpus.

We cannot prevent re-listing. OneShot is a one-time filing pass + day-30 verification. Brokers do scrape new public-record feeds and can re-list you over time. If you want continuous re-removal and weekly re-scans, that’s our separate Warden subscription — never auto-enrolled from this purchase.

We cannot guarantee a specific removal timeline. CCPA gives brokers up to 45 days. Some respond in hours; some take the full window. Your day-30 wrap-up reflects whatever the brokers have actually done by then.

3Refund policy

Refunds are tied to fulfillment milestones. Each milestone has timestamped audit logs, so the policy is unambiguous:

Refund available — full $19

You completed checkout but have not signed the Third-Party Authorization (TPA) yet. No work has begun on your removal package. Email support@galaxywarden.com with your Stripe receipt and we’ll process the refund within 1–2 business days.

Refund at customer-support discretion only

You signed the TPA (work has begun — broker emails dispatched, your authorized-agent package generated).
You opened, downloaded, or viewed your exposure report (delivered intellectual content consumed). Includes the in-browser report view, the emailed PDF, and any direct download link.
Edge case — zero exposures found. If your DoxxScan returns zero broker listings AND zero breach matches, support may approve a courtesy refund. Reach out at support@galaxywarden.com and we’ll review.

No refund

Removal requests filed and acknowledged by brokers cannot be reversed — broker-side automation has already begun the deletion workflow.
“A broker didn’t respond.” CCPA gives brokers 45 days. We can’t guarantee response. We do document non-responders in your wrap-up.
“A broker re-listed me later.” OneShot is a one-time clean. Re-listing is what the Warden subscription is for.

How to request

Email support@galaxywarden.com with your Stripe receipt and the reason. We respond within one business day. Approved refunds process via Stripe in 5–10 business days back to the original payment method.

4Stripe chargeback policy

If you file a Stripe chargeback before contacting support, we will respond with the audit trail (TPA signature timestamp, broker filing logs, exposure report delivery timestamp, day-30 verification scan). Stripe typically rules in favor of the merchant when fulfillment is documented to this degree. Save everyone the time and email support@galaxywarden.com first.

5Scope at a glance

One-line summary of what the $19 transaction is — and is not:

$19 covers Broker-removal filings across 800+ sites, breach + dark-web exposure report, day-30 verification re-scrape, remediation guidance.
$19 does not cover Ongoing monitoring, auto-resend on re-listing, weekly re-scans, breach-corpus deletion (impossible for anyone), legal representation, identity-theft restoration.

Need ongoing protection? The Warden subscription covers continuous monitoring + auto-resend + concierge-guided remediation. Never auto-enrolled from this purchase.

Ready to clean it up?

$19 once. Report in ~60 seconds. Removals filed across 800+ broker sites.

Get OneShot — $14.99 with MDAY26 →

6About our “hacker-prevention” language

Our marketing describes the connection between publicly-sold broker data and common attack patterns (spear-phishing, SIM-swap, account takeover, identity theft). These connections are well-documented in third-party reporting (FBI Internet Crime Complaint Center, NIST publications, KrebsOnSecurity).

To be clear about what we do and don’t claim:

What we do: Remove your personal information from 800+ data broker websites. Scan 15 billion+ leaked records for your email and surface exposed credentials. Check back at day 30 and email you proof of removal status.

What we do NOT claim: That removing your broker data prevents any specific attack. Attack outcomes depend on many factors outside our control (your own security hygiene, attacker sophistication, other data sources, social engineering tactics, etc.). We make no representation that any specific account, transaction, identity, or asset will remain secure as a result of using our service.

Our service reduces the data available for common attack patterns. That is a meaningful protective action. It is not a guarantee of attack prevention. Continue to follow standard security hygiene.

7Limitation of liability & no warranty

This service is provided “as is” without warranties of any kind, express or implied, including (without limitation) warranties of merchantability, fitness for a particular purpose, non-infringement, accuracy, or that the service will be uninterrupted or error-free.

To the maximum extent permitted by applicable law, BATECH LLC (operator of GalaxyWarden) disclaims all liability for any indirect, incidental, special, consequential, exemplary, or punitive damages, including without limitation damages arising from: (a) any failure of the service to prevent an attack, security incident, identity theft, account takeover, financial loss, or unauthorized access; (b) any data broker’s failure to honor a removal request; (c) any reappearance of your data after removal; (d) any decision you make based on information surfaced in your exposure report.

Our total aggregate liability for any claim arising from or related to your use of the service is limited to the amount you paid us for the service in the 12 months preceding the claim.

Some jurisdictions do not allow the exclusion or limitation of certain damages, so the above may not apply to you in full. Where required by law, mandatory consumer protections under your state’s statutes take precedence over the above limitations.

8Governing law

These terms are governed by the laws of the State of California, without regard to its conflict-of-laws principles. Any dispute arising from or related to your use of the service shall be subject to the exclusive jurisdiction of the state and federal courts located in Los Angeles County, California, except where applicable consumer-protection law of your home state requires a different venue.

Nothing in these terms waives any non-waivable consumer right under your state’s law (including but not limited to the California Consumer Privacy Act / California Privacy Rights Act, the Delete Act, and equivalent statutes in other states).

9Your privacy and data rights

We act as your authorized agent under CCPA §1798.135(c) and equivalent state statutes when filing removal requests on your behalf. To do this, we collect and process the personal information you provide (name, email, address, phone, identifiers needed for filings).

For the full description of what we collect, how we use it, who we share it with, and how to exercise your privacy rights:

→ Privacy Policy · including the “Do Not Sell or Share My Personal Information” right under CCPA/CPRA.

You can request a copy of your data, request deletion, or revoke our authorized-agent authorization at any time by emailing support@galaxywarden.com.