LeakJar

Last updated: February 2026

Privacy Policy

Your privacy is fundamental to our mission. This policy explains how we handle your data.

Key commitment

We do not collect or store plaintext passwords. All credential screening uses privacy-preserving techniques including k-anonymity and cryptographic hashing.

1. What We Collect

We collect information in the following ways when you use our Services:

Account Information

When you create an account, we collect your name, email address, company name, and billing information necessary to provide and manage your account.

API Usage Data

We log API requests for rate limiting, abuse prevention, and analytics. These logs include request timestamps, endpoints accessed, response codes, and API key identifiers. We do not log request payloads containing credential data.

Website Usage Data

We collect standard web analytics data such as pages visited, referral sources, browser type, and device information to improve our website and services.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Services.
  • Process transactions and send related billing information.
  • Send transactional emails, service updates, and security alerts.
  • Monitor and prevent abuse of our platform.
  • Comply with legal obligations and enforce our Terms of Service.
  • Generate aggregated, anonymized analytics to improve our products.

We do not sell your personal information to third parties. We do not use credential data submitted via our APIs for any purpose other than providing the requested screening service.

3. Data Retention

We retain your account information for as long as your account is active. API usage logs are retained for up to 90 days for operational purposes. Billing records are retained as required by applicable tax and financial regulations.

When you delete your account, we will remove your personal information within 30 days, except where retention is required by law or for legitimate business purposes (such as fraud prevention).

4. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request correction of inaccurate or incomplete information.
  • Deletion: Request deletion of your personal information, subject to legal obligations.
  • Portability: Request a machine-readable copy of your data.
  • Objection: Object to certain processing activities, such as direct marketing.

To exercise any of these rights, please contact us at privacy@leakjar.com. We will respond within 30 days.

5. Security

We implement industry-standard security measures to protect your information, including encryption in transit (TLS) and at rest, access controls, regular security audits, and infrastructure monitoring. However, no method of transmission over the Internet or electronic storage is 100% secure.

6. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us: