Privacy Policy
Last Updated: March 11, 2025
Welcome to Breach Guard. Your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our website and services. By using our Services, you agree to the terms of this Privacy Policy. If you do not agree with the practices described in this Privacy Policy, please do not use our Services.
1. Information We Collect
1.1 User-Provided Information
We collect information that you provide to us when you register for our Services. This may include your name, email address, and other contact details.
1.2 Compromised Domains
We collect domains that have been compromised. This information is used solely to improve our website and services.
1.3 Email Addresses for Breach Checking
When you use our email checking service, we collect the email address you submit (temporary) for verification against known data breaches.
2. Use of Information
We use the information we collect to improve our website and services. We do not use the data for any other purposes.
2.1 Purpose of Email Collection
We collect email addresses solely to check against our database of known breaches and provide you with relevant information about potential compromises.
2.2 Lawful Basis for Processing
We process your information based on legitimate interests in providing our services and ensuring security. By using our services, you acknowledge these legitimate interests.
2.3 Legitimate Interest Assessment
BreachGuard has conducted a legitimate interest assessment and determined that our processing of breach data, including email addresses and associated compromised passwords, represents a legitimate interest in improving cybersecurity that does not unduly impact individual privacy rights.
2.4 Criminal Activity Detection
We reserve the right to use the information we collect to detect, prevent, and address potentially illegal activities. This may include cooperating with law enforcement investigations when required by law.
3. Sharing Your Information
3.1 General Policy
We do not sell, trade, or otherwise transfer your personal information to third parties.
3.2 Partnerships
If you become one of our partners, you will have access to any data related to your business, including information about your company employees, etc., as soon as they get compromised. We will only share data that is directly related to your business and necessary for the partnership.
4. Legal Requirements
We may disclose your information when required by law, to protect our rights, or in response to a court order or legal request.
5. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to collect information about your browsing behavior and preferences. You can control cookies through your browser settings.
6. Security
We take reasonable steps to protect your personal information from unauthorized access and disclosure. However, no data transmission over the internet can be guaranteed to be completely secure.
6.1 Email Processing
To enhance privacy, submitted email addresses may be processed using various security techniques before being compared to our breach database.
6.2 De-identification Practices
When technically feasible, we may de-identify certain breach data through techniques such as hashing, encryption, or anonymization to further protect individual privacy while maintaining the utility of the service.
6.3 Sensitive Data Processing
Our service may inadvertently process what may be considered sensitive personal information that has already been exposed in data breaches. Such processing is limited to notification purposes only, and we apply enhanced security measures to such data.
7. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. The "Last Updated" date at the top of this Privacy Policy indicates when it was last revised.
8. Breach Data Sources and Disclaimers
8.1 Breach Data Sources
The breach data in our database is compiled from legally obtained sources, including: (a) Public breach notifications, (b) Data that has been publicly posted or leaked, (c) Research conducted by security professionals, (d) Information shared by security partners and researchers. We do not engage in unauthorized access to obtain breach data.
8.2 Breach Data Disclaimer
The breach data in our database consists of information that has already been compromised and collected from various public sources. BreachGuard maintains this data exclusively for security and alerting purposes and is not responsible for the original collection, compromise, or distribution of this data.
8.3 No Guarantee of Complete Information
Our breach database may not contain all compromised information. Absence of your information in our search results does not guarantee your data has never been compromised.
9. Limitations and User Responsibilities
9.1 Limited Liability
While we implement reasonable security measures, BreachGuard cannot guarantee absolute security and is not liable for any unauthorized access to or use of our services.
9.2 User Responsibility
You are solely responsible for maintaining the confidentiality of any information you receive through our service and for any actions you take based on that information.
9.3 Breach Notification Limitations
While we may attempt to notify users of significant data incidents affecting our own systems, we cannot guarantee timely notification and expressly disclaim any legal obligation to provide such notifications beyond what is strictly required by applicable law.
10. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at info[at]breachguard.net.