Privacy Policy

TL;DR

We don't collect, store, or transmit your personal data. All tools run 100% in your browser using client-side JavaScript. We don't have user accounts, databases, or server-side processing. We use display ads and affiliate links to keep the site free.

What We Don't Collect

We do not collect, process, or store: passwords you test in our checker, email addresses you check for breaches, photos you strip metadata from, your browser fingerprint data, DNS or WebRTC leak test results, or any other data entered into our tools. All processing happens locally in your browser.

Third-Party APIs

Some tools make requests to external APIs to function. Your browser connects directly to these services — we don't proxy or log these requests. These include: IP geolocation APIs (ipapi.co, ip-api.com) for the IP lookup tool, the HaveIBeenPwned API for the email breach checker, and Cloudflare's speed test endpoints. Each of these services has their own privacy policy governing how they handle requests.

Advertising

We display third-party advertisements to keep the site free. Ad networks may use cookies and similar technologies to serve ads based on your browsing activity. You can manage ad tracking through your browser's cookie settings or by using an ad blocker. We also include affiliate links to VPN and security products. When you purchase through these links, we may earn a commission at no extra cost to you.

Hosting

This site is hosted as static files. The hosting provider may collect standard web server logs (IP address, user agent, pages visited) as part of normal operations. We do not access or analyze these logs.

Changes

If we change this policy, we'll update this page. Last updated: February 2026.

Contact

Questions about this policy? Contact us at hello@nothingleaks.com.