Privacy Policy
Last updated: February 21, 2026
Table of Contents
1. Data Controller
The data controller responsible for your personal data is:
2. Data We Collect
We collect the following categories of data:
API Request Data
No personal data is stored. All API requests are processed in-memory only and are never logged or persisted. We retain usage statistics (request counts and timestamps) tied to your account for up to 90 days.
Payment Information
Payment processing is handled by Paddle. We do not store your credit card details or full payment information. Please refer to Paddle's privacy policy for information on how they handle your payment data.
3. Legal Basis for Processing
Under the General Data Protection Regulation (GDPR), we process your data based on the following legal grounds:
- Contract Performance: Processing necessary to provide you with the email validation service you signed up for.
- Legitimate Interest: Processing necessary for our legitimate business interests, such as improving our service and preventing abuse.
- Consent: Where you have given explicit consent for specific processing activities, such as marketing communications.
- Legal Obligation: Processing necessary to comply with legal requirements.
4. How We Process Your Data
We use your data for the following purposes:
- Providing and maintaining the email validation API service
- Processing API requests and returning validation results
- Processing payments and managing subscriptions
- Communicating with you about your account and service updates
- Improving and optimizing our service
- Preventing fraud and abuse
Data Location
API requests are processed at edge locations closest to the requesting user via BunnyWay d.o.o. (Slovenia, EU). Requests originating within the EU are always processed within the EU. No data from API queries is stored at any location.
5. Data Retention
We retain your data for the following periods:
- Usage Statistics: Per-account usage statistics (request counts, timestamps) are retained for 90 days. No personal data from API queries is ever stored.
- Account Data: Your account information is retained until you delete your account.
- Billing Records: Payment records are retained as required by tax and accounting regulations.
6. Third-Party Services
We use the following third-party services that may process your data:
- BunnyWay d.o.o. (Bunny CDN): Edge computing infrastructure. API requests are processed in-memory on Bunny CDN edge servers. No data is stored by Bunny CDN.
- Paddle: Payment processing. Paddle acts as our Merchant of Record and processes payments on our behalf.
We do not sell your personal data to third parties. We only share data with third parties as necessary to provide the service or as required by law.
7. Your Rights (GDPR)
Under the GDPR, you have the following rights regarding your personal data:
- Right of Access: You can request a copy of the personal data we hold about you.
- Right to Rectification: You can request correction of inaccurate or incomplete data.
- Right to Erasure: You can request deletion of your personal data ("right to be forgotten").
- Right to Data Portability: You can request your data in a structured, machine-readable format.
- Right to Restrict Processing: You can request that we limit how we use your data.
- Right to Object: You can object to processing based on legitimate interests or for direct marketing.
- Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time.
To exercise any of these rights, please contact us at support@check-mail.org. We will respond to your request within 30 days.
You also have the right to lodge a complaint with a supervisory authority, in particular in the EU Member State of your habitual residence, place of work, or place of the alleged infringement.
8. Security
We implement appropriate technical and organizational measures to protect your personal data, including:
- Encryption of data in transit (TLS/HTTPS)
- Regular security assessments
- Access controls and authentication
- EU-based infrastructure
9. Updates to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through a notice on our website. We encourage you to review this policy periodically. Your continued use of the Service after changes become effective constitutes your acceptance of the revised policy.
10. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
Recently checked domains:
mowbotix.com sferenc.com ramynd.com verdeksolar.com izkat.com