Privacy Policy

Last updated: November 4, 2025

1. Introduction

SecureKit ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our email and IP validation API service ("Service").

By using our Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you provide directly to us, including:

  • Account registration information (name, email address, password)
  • Payment information (processed through Paddle, our payment service provider)
  • Contact information when you communicate with us
  • API keys and authentication credentials
  • Support requests and communications

2.2 Information Collected Automatically

When you use our Service, we automatically collect certain information, including:

  • IP addresses and device information
  • Browser type and version
  • Usage data, including API request logs and patterns
  • Cookies and similar tracking technologies
  • Error logs and performance data

2.3 Information from Third Parties

We may receive information about you from third-party services, including:

  • Paddle (payment processing and billing information)
  • Authentication providers (if you use social login)
  • Analytics and monitoring services

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve our Service
  • To process payments and manage your subscription
  • To authenticate and authorize access to the Service
  • To send you service-related communications, including updates and security alerts
  • To respond to your inquiries and provide customer support
  • To monitor and analyze usage patterns and trends
  • To detect, prevent, and address technical issues and security threats
  • To comply with legal obligations and enforce our Terms of Service
  • To send marketing communications (with your consent, where required)

4. Data Processing and Validation Services

As part of our email and IP validation Service, we process data that you submit through our API:

  • Email addresses submitted for validation are processed to determine validity, deliverability, and risk factors
  • IP addresses submitted for validation are analyzed for security threats, geographic location, and reputation
  • Validation results are temporarily stored for API response delivery and then deleted in accordance with our data retention policy

We do not use validated data for marketing purposes or share it with third parties except as necessary to provide the Service or as required by law.

5. Payment Processing and Paddle

Payments for SecureKit services are processed through Paddle.com ("Paddle"), our payment service provider. When you make a purchase:

  • Paddle acts as the merchant of record and payment processor
  • Paddle collects and processes your payment information in accordance with their privacy policy
  • We receive limited payment information from Paddle (transaction status, billing address, subscription details) necessary to provide the Service
  • We do not store your full payment card details; this information is handled exclusively by Paddle

For more information about how Paddle handles your payment data, please review Paddle's Privacy Policy.

6. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

6.1 Service Providers

We may share information with third-party service providers who perform services on our behalf, including:

  • Payment processing (Paddle)
  • Cloud hosting and infrastructure providers
  • Analytics and monitoring services
  • Customer support platforms
  • Email delivery services

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

6.2 Legal Requirements

We may disclose your information if required by law or in response to valid requests by public authorities, including:

  • Compliance with legal obligations
  • Enforcement of our Terms of Service
  • Protection of our rights, property, or safety
  • Protection of the rights, property, or safety of our users or others

6.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity, subject to the same privacy protections.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and store certain information. Cookies are files with small amounts of data that may include an anonymous unique identifier.

Types of cookies we use:

  • Essential Cookies: Required for the Service to function properly (authentication, security)
  • Analytics Cookies: Help us understand how visitors interact with our Service
  • Preference Cookies: Remember your settings and preferences

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

8. Data Security

We implement appropriate technical and organizational security measures to protect your information against unauthorized access, alteration, disclosure, or destruction, including:

  • Encryption of data in transit (TLS/SSL)
  • Encryption of sensitive data at rest
  • Regular security assessments and updates
  • Access controls and authentication mechanisms
  • Secure API key management

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

9. Data Retention

We retain your information for as long as necessary to:

  • Provide the Service and maintain your account
  • Comply with legal obligations
  • Resolve disputes and enforce our agreements

When you delete your account, we will delete or anonymize your personal information, except where we are required to retain it for legal, regulatory, or legitimate business purposes.

Validation data submitted through our API is retained only long enough to deliver results and is then deleted in accordance with our data retention policy.

10. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information, including:

  • Access: Request access to your personal information
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information
  • Portability: Request transfer of your data to another service
  • Objection: Object to processing of your information for certain purposes
  • Restriction: Request restriction of processing
  • Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at support@securekit.dev. We will respond to your request within a reasonable timeframe and in accordance with applicable law.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country.

We take appropriate safeguards to ensure that your information receives an adequate level of protection in the jurisdictions in which we process it, including through contractual clauses and other measures as required by applicable law.

12. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child without verification of parental consent, we will take steps to delete that information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date
  • Sending you an email notification (for material changes)
  • Displaying a notice within the Service

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

  • Email: support@securekit.dev
  • Website: https://securekit.dev

15. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

  • The right to know what personal information we collect, use, and disclose
  • The right to delete personal information we have collected
  • The right to opt-out of the sale of personal information (we do not sell personal information)
  • The right to non-discrimination for exercising your privacy rights

To exercise your California privacy rights, please contact us at support@securekit.dev.

16. GDPR Rights (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including:

  • The right to access your personal data
  • The right to rectification of inaccurate data
  • The right to erasure ("right to be forgotten")
  • The right to restrict processing
  • The right to data portability
  • The right to object to processing
  • Rights related to automated decision-making

If you wish to exercise any of these rights, or if you have concerns about our data processing practices, you may also contact your local data protection authority.

← Back to Home