isthisdodgy.co.uk

Privacy

People paste sensitive things into a scam-checker. Text from family members, bank messages, personal phone numbers. We treat that as a trust we can't break.

What we don't do

  • We don't save what you paste. There's no database of your checks.
  • We don't show ads.
  • We don't sell or share your data.
  • We don't ask for your email, name or any signup.

What we do

  • Your input is processed in memory on a server. The verdict is sent back to your browser. The input is then discarded.
  • When you check a link, email or phone number we may pass it to one of these services to enrich the verdict: Google Safe Browsing, abuse.ch URLhaus, OpenPhish, the public RDAP registry, EmailRep, StopForumSpam and IPQualityScore. Each call is anonymous and is only made to that one service. These services run their own logs of incoming requests. We can't control that. If your input is highly sensitive, edit out personal details before pasting.
  • Standard, anonymous, low-cardinality server logs (date, route hit, response code) may be kept by our hosting provider for security and abuse prevention. They don't contain what you pasted.
  • We use Vercel Analytics to count page views. It's privacy-friendly: no cookies, no fingerprinting, no PII. Vercel records aggregated counts plus the country a request came from, derived from the IP. The IP itself is not stored.

If we add another external check

We'll list it here before turning it on. We won't quietly start sharing input with new third parties.

Contact

Questions or corrections: open an issue or use the report page.