Scans are not stored by default. When you run a scan, your input is sent to breach databases for the lookup and is not persisted on our servers.
Opt-in lead storage. If you tick "Monitor this address", we store the input in our database so we can notify you of future breaches and improve the service. You can request deletion at any time.
Password check is local. The password vulnerability widget runs entirely in your browser. Your password is never transmitted.
No silent tracking. We do not upload visitor data to advertising platforms without explicit consent.
This is a placeholder policy. Replace with your full legal text before production launch.