Privacy Policy

IsThisValid.com (“we”, “our”, or “us”) operates a free suite of verification tools, including an email validator, a URL safety checker, and a text / SMS scam detector. This Privacy Policy explains what information we collect when you use our site, how we use it, and the rights you have over your data.

We are committed to processing as little personal data as possible. We do not require accounts, logins, or registrations to use this service.

Email addresses you submit. When you enter an email address into the validation tool, that address is sent to our server solely to perform the requested validation check. We do not store, log, or retain submitted email addresses after the check is complete. No email address you enter is ever saved to a database.

URLs you submit. When you enter a URL into the URL checker, that URL is sent to our server and forwarded to the Google Safe Browsing API solely to perform a safety check. We do not store submitted URLs after the check is complete.

Text messages you submit. When you paste a text or SMS message into the scam detector, that message text is sent to our server and forwarded to the Anthropic API (see Third-Party Services below) for AI analysis. We do not permanently store the raw message text. A cryptographic hash (SHA-256) of a normalised version of the message may be cached in Upstash Redis for up to 24 hours to avoid redundant API calls for identical inputs; the hash is one-way and cannot be used to reconstruct the original message.

Server logs. Like all web servers, our hosting provider (Vercel) may retain standard HTTP access logs (IP address, browser type, referring URL, timestamp) for up to 30 days for security and debugging purposes. These logs are governed by Vercel's Privacy Policy.

Cookies and local storage. We store a single cookie-consent preference in your browser's localStorage to remember whether you have accepted our cookie policy. We do not use any first-party tracking cookies ourselves.

Google AdSense. We display advertisements served by Google AdSense. Google may use cookies and similar technologies to serve ads based on your prior visits to this or other websites. Google's use of advertising cookies enables it and its partners to serve ads based on your visit to our site and/or other sites on the Internet.

You may opt out of personalised advertising by visiting Google Ad Settings or www.aboutads.info. For more information, see Google's advertising policies.

Anthropic API (Claude AI). Text and SMS messages you submit to the scam detector are forwarded to the Anthropic API for AI-powered analysis. Anthropic processes this data as a subprocessor on our behalf. By default, Anthropic does not use API inputs to train its models and does not retain submitted content beyond the duration of the API request. For details, see the Anthropic Privacy Policy.

Google Safe Browsing API. URLs you submit to the URL checker are forwarded to the Google Safe Browsing API to detect known phishing and malware sites. Google processes this data as a subprocessor. See the Google Privacy Policy for details.

Upstash Redis. We use Upstash Redis to enforce rate limits and to cache AI analysis results (stored as anonymised hashes with a 24-hour TTL). No personally identifiable information is written to Upstash. See the Upstash Privacy Policy.

Emailable API. If our Emailable integration is enabled, email addresses you submit may be forwarded to the Emailable email verification API (Emailable Privacy Policy) solely to perform deliverability verification. Emailable processes this data as a data processor on our behalf. No other data is shared.

Our site may set the following cookies or local storage entries:

You can disable cookies at any time via your browser settings. Disabling advertising cookies will not affect the core functionality of our validation tool.

If you are located in the European Economic Area, United Kingdom, or California, you have the following rights regarding your personal data:

• Access — you can request a copy of any personal data we hold about you.
• Deletion — you can request deletion of your personal data. Because we do not store email addresses, there is typically nothing to delete.
• Opt-out of sale — we do not sell personal data to third parties.
• Object to processing — you can withdraw consent for advertising cookies at any time via the cookie banner or your browser settings.

To exercise any of these rights, contact us at privacy@isthisvalid.com.

This service is not directed at children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal data from children. If you believe a child has submitted personal data to us, please contact us immediately at privacy@isthisvalid.com.

We do not permanently store email addresses, URLs, or text messages entered into any of our tools. A short-lived cache entry (24-hour TTL) derived from a one-way hash of submitted messages may be retained in Upstash Redis solely to avoid redundant AI calls; it cannot be used to recover the original text. Server access logs retained by Vercel are deleted within 30 days. Cookie consent preferences stored in your browser persist until you clear your browser storage.

We may update this Privacy Policy from time to time. The “Last updated” date at the top of this page will reflect any changes. Continued use of the site after changes constitutes acceptance of the updated policy.

For privacy-related questions or requests, contact us at: privacy@isthisvalid.com