🍪 We use cookies for your convenience and our analytics

ClarityRadar

PRIVACY POLICY FOR EU/UK

PRIVACY POLICY FOR EU/UK

1. INTRODUCTION

ClarityRadar ("we," "us," "our," or the "Company") is committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR) for EU and UK users. This Privacy Policy describes how we collect, use, retain (including by temporary caching where enabled), store, and disclose personal data when you access or use the ClarityRadar.com website and all its subdomains (collectively, the "Site") and our lookup services and related tools (the "Services").

2. INFORMATION COLLECTION PRACTICES

2.1 Types of Information Collected

We collect the following types of information:
  • a) User Information:Information you provide when you use our Site, including: Contact Data (name, surname, email address) Payment Data (PayPal account, Credit Card information)
  • b) Search Query Information:Information you provide as part of your search query (e.g., phone numbers, email addresses) to generate reports.
  • c) Publicly Available Information:Information we collect in real-time from various public databases, websites, and other publicly accessible sources to create our reports.
  • d) Stored Report Information (Reports History):Where you choose to use our “Reports History” / “Cached Reports” feature, we temporarily store the report output associated with your account so you can re-open it without re-running the same search. Cached Reports may contain personal data (e.g., names, addresses, phone numbers, email addresses, and social profiles) to the extent included in the report output. Cached Reports are not publicly displayed, indexed, or searchable, and are accessible only to the authenticated account that generated them.
  • e) Usage/Technical Data:We collect standard technical and usage data (e.g., device identifiers, browser type, IP address, timestamps, and log data) as necessary to operate, secure, and improve the Services. We do not use stored report output to build a public directory of individuals or for advertising targeting.

2.2 Sources of Information

We obtain the categories of information listed above from the following sources:
  • a)Directly from our clients as part of the registration process (for User Information only).
  • b)Information returned by third-party search provider APIs (see item d) below) when you perform an image search. We do not crawl, scrape, or index websites ourselves.
  • c)Phone number information derived locally using offline validation libraries (libphonenumber) and publicly known carrier number ranges. We do not perform HLR (Home Location Register) lookups against mobile carriers and do not share your phone number with third parties for such lookups.
  • d) Third-party search providers (Subprocessors):To process image search requests, we use APIs of specialized third-party search providers, including FaceCheck.id (face matching against publicly available online sources) and Google Lens (reverse image search via official API). These providers process the image you upload only at the moment of the search (transient processing) and do not retain it in their systems after the query is completed. We do not share your contact information, payment details, or other personal data with them — only the image itself, as necessary to perform the search. We reserve the right to change the list of providers; the current list is available upon request through our Help Center.

3. LEGAL BASIS FOR PROCESSING

  • a) User Account Information:We process account and billing/transaction information as necessary to perform our contract with you (i.e., to provide the Services you request) and to comply with applicable legal obligations (e.g., accounting and fraud prevention). Where required, we may also rely on consent for specific optional processing activities.
  • b) Search Query Information:The legal basis for processing search query information is the performance of our service as a search engine, which you request when you place an order to search for information.
  • c) Publicly Available Information:We process publicly available information based on our legitimate interest in providing a comprehensive search service to our customers.
  • d) Stored Report Information (Reports History):We process and temporarily store stored report output based on our legitimate interests in providing an improved user experience (allowing you to re-open a previously generated report without re-running the same search), and/or as necessary to perform our contract with you where the feature is enabled as part of the Services you request. This feature is optional, purpose-limited, and time-limited as described below.
  • e) Cookies/Similar Technologies:Where required by law, we rely on your consent for non-essential cookies and similar technologies.

4. USE OF INFORMATION

We use the collected information to:
  • a) User Account Information:The legal basis for processing your account information is your consent, which you provide when you create an account and agree to our privacy policy and terms and conditions.
  • b) Search Query Information:The legal basis for processing search query information is the performance of our service as a search engine, which you request when you place an order to search for information.
  • c) Publicly Available Information:We process publicly available information based on our legitimate interest in providing a comprehensive search service to our customers.

5. DATA STORAGE AND RETENTION

ClarityRadar generally retrieves report data in real time to generate results and does not maintain a public “people-search” database of EU/UK/CH residents. However, we do store certain data in the following limited ways:
  • a) Account Information:We retain account information for as long as your account is active and as needed thereafter for legitimate business purposes and legal compliance. If you are a registered user and wish to delete your account, please contact us via our Help Center, and we will process your request.
  • b) Cached Reports (Reports History):Uploaded photo files are deleted from our storage within 72 hours of search completion (minimum retention necessary). Cached search results (URLs, match summaries, metadata — non-biometric data) associated with your account are retained for up to 30 days for user review and then automatically deleted from our active systems, subject to limited exceptions for security, fraud prevention, backups, and legal compliance. Scan history records (timestamps, identifiers) may be retained as needed for service operation.
  • c) User Controls:Where available, you may delete Cached Reports earlier (e.g., by clearing report history), which will remove them from your account view.
  • d) Access Controls:Cached Reports are accessible only to the account that generated them and are not shared with other users unless and until we introduce an explicit “share” feature with additional disclosures and safeguards.
  • e) Security Logs:We may retain certain technical, security, and audit logs for limited periods as necessary to operate, secure, and protect the Services.

6. REMOVAL OF PUBLICLY AVAILABLE INFORMATION

While we do not store the information we return to our customers when performing search enquiries, we understand you may want to remove this information from potential future searches. If you wish to have your publicly available information removed from our search results:
  • a)Contact us via our Help Centre (link available in the footer).
  • b)We will provide you with the source(s) of the information displayed in our search results.
  • c)You can then contact these sources directly to request the removal of your information.
  • d)Once you have successfully removed your information from its original source(s), please inform us through our Help Centre.
  • e)We will then ensure that this information is no longer displayed in our search results when customers perform searches.
If a user previously generated a report that contains information about you, and the user has stored that report via Reports History, we may not be able to retroactively modify that previously generated report content. However, Cached Reports are automatically deleted after the retention period described above, and we may also delete Cached Reports where required by applicable law. Please note that as this information is publicly available, we can only assist in identifying the sources and preventing it from appearing in our search results. The ultimate removal of the information depends on the policies and procedures of the original source.

7. DATA MINIMIZATION

We only collect and process data that is necessary for providing our service. This includes your name, surname, email, and payment details, which are stored securely in a PCI-DSS compliant vault.

8. YOUR RIGHTS UNDER GDPR

As an EU, UK, or EEA user, you have the following rights and the means to exercise each of them:
  • a) Access (Article 15)Request a copy of all personal data we hold about you. To exercise: email privacy@clarityradar.com from the address on your account. We respond within 30 days.
  • b) Rectification (Article 16)Correct inaccurate personal data. You can update most fields directly in your Account Settings, or email privacy@clarityradar.com for fields you cannot edit yourself.
  • c) Erasure / Right to be forgotten (Article 17)Permanently delete your account and personal data. We provide self-service deletion: log in to your Account, click "Delete Account", and confirm via the secure email link we send you (1-hour expiry). Your data is removed within minutes; transaction records are anonymized for tax compliance only.
  • d) Restriction of processing (Article 18)Ask us to pause processing of your data while you contest accuracy or object to processing. Email privacy@clarityradar.com.
  • e) Data portability (Article 20)Receive your data in a structured, machine-readable format (JSON). Email privacy@clarityradar.com — we deliver an export within 30 days.
  • f) Objection (Article 21)Object to processing for direct marketing or based on legitimate interests. Email privacy@clarityradar.com or use the unsubscribe link in any marketing email. We also provide a "Do Not Sell My Personal Information" mechanism in our footer for users who wish to opt out of any sale or sharing of personal data.
  • g) Automated decision-making (Article 22)We do not make solely-automated decisions producing legal or similarly significant effects about you. ML is used only for backend matching of public records, not to make decisions about you.
  • h) Withdraw consentWhere processing is based on consent (e.g. analytics and marketing cookies), you can withdraw it any time by clearing cookies and revisiting the cookie banner, or by emailing privacy@clarityradar.com.
  • i) Lodge a complaint (Article 77)Lodge a complaint with your local Data Protection Authority. You do not need to contact us first, but we'd appreciate the chance to address your concerns.

9. CROSS-BORDER DATA TRANSFERS

Personal data may be transferred to and processed in countries outside the EU/UK/EEA, including the United States, where some of our service providers (Stripe for payments, Resend or Amazon SES for email, Cloudflare for DNS and security, Cloudflare R2 for file storage) are located. For these transfers we rely on the European Commission's Standard Contractual Clauses (SCCs) and, where applicable, the EU-U.S. Data Privacy Framework (which replaced the invalidated Privacy Shield in 2023). We have signed or accepted Data Processing Agreements with our processors as required by GDPR Article 28.

10. AUTOMATED DECISION-MAKING AND PROFILING

We may use automated decision-making and profiling based on the cookie policy and consent you have given to us.

11. DATA SECURITY

We apply industry-standard technical and organizational safeguards to protect your data, including: encrypted transport (HTTPS/TLS) for all traffic; passwords stored as bcrypt hashes (never in plaintext); short-lived JWT access tokens with httpOnly refresh cookies; rate limiting on authentication endpoints; account lockout after repeated failed login attempts; magic-link tokens stored as SHA-256 hashes; tracking pixels and analytics scripts (Facebook Pixel, Microsoft Clarity, Ahrefs) loaded only after explicit cookie consent; geographic restrictions on our biometric photo-search feature in jurisdictions with strict biometric privacy laws (BIPA, GDPR Art. 9, LGPD, PIPA, APPI, POPIA). Payment data is processed by Stripe, a PCI DSS Level 1 compliant provider; we never see or store full card numbers.

12. BREACH NOTIFICATION

In line with GDPR Article 33, we will notify the relevant supervisory authority (Data Protection Authority) of any personal data breach without undue delay and, where feasible, within 72 hours of becoming aware of it, unless the breach is unlikely to result in a risk to the rights and freedoms of natural persons. Where a breach is likely to result in a high risk to your rights and freedoms (e.g. exposure of your contact details, payment information, or biometric data), we will also notify you directly without undue delay (GDPR Article 34). We maintain an internal incident response procedure and document every breach for the records required by GDPR Article 33(5).

13. CHILDREN'S DATA

Based on our terms and conditions, we do not provide our service to people under 18 years old.

14. DATA PROTECTION OFFICER (DPO)

You can contact our Data Protection Officer at dpo@clarityradar.com.

15. COOKIES AND CONSENT

We use only essential cookies until you provide explicit consent through the cookie banner shown on first visit. Non-essential trackers (Facebook Pixel, Microsoft Clarity, Ahrefs Analytics) are loaded only after you click "Accept". You may withdraw consent any time by clearing cookies in your browser. For full details on cookie categories, third-party providers, retention periods, and opt-out links, please refer to our separate Cookie Policy in the website footer.

16. CHANGES TO PRIVACY POLICY

ClarityRadar may amend this Privacy Policy from time to time. We will notify you of significant changes by posting a prominent notice on our website or sending you an email notification.

17. CONTACT INFORMATION

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us via our Help Center (see link in the footer) or our Privacy Officer at: Email: privacy@clarityradar.com By using our Services, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.

Last updated: January 9, 2026