Legal

Privacy Policy

Last updated July 2026. This is a plain-English summary provided as a starting point — have it reviewed against your obligations (e.g. GDPR/CCPA) before launch.

The short version

Our scam checker runs in your browser. We don’t want your messages, and by default we never receive them. We don’t sell data, and we don’t show ads.

What stays on your device

When you paste a message or review a phone call, the analysis happens entirely in your browser using JavaScript. That text is not sent to us, stored, or shared. If you close the tab, it’s gone.

What you can choose to send us

A few clearly-labelled buttons contact our server, and only when you tap them:

  • Look up a link or number — sends only that single link or phone number so we can check it against our community database. It does not send your message.
  • Report a scam — sends the link or number you’re reporting, the scam category, and (only if you tick the box) an excerpt of the message, to help us warn others.
  • Double-check on our server — sends the message text so our server can cross-reference the community database. We store an anonymised record of the result (risk level and signal tags), never the message itself.

Technical data

To prevent abuse (spam and automated attacks), our server temporarily records a one-way hashed version of your IP address with each request. We never store your raw IP address, and the hash cannot be reversed to identify you. Standard server logs may be kept by our host for security.

Contact form

If you email us or use the contact form, we use the details you provide solely to reply to you.

What we don’t do

  • We don’t sell, rent, or trade your data.
  • We don’t run advertising or third-party trackers on the scam checker.
  • We don’t require an account to use the tools.

Your choices

Because the core tool is on-device, you can use it without sending us anything at all. To request removal of a report or ask a data question, contact us at hello@krypsisguardian.com.