Privacy Policy

Last updated: February 15, 2026

1. Introduction

MailCheck ("we", "our", "us") operates the email verification API service at mailcheck.dev. This Privacy Policy explains how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable EU data protection laws.

2. Data We Collect

Account Information: When you create an account, we collect your email address, name (optional), and a hashed version of your password. We never store passwords in plain text.

Email Addresses for Verification: When you use our API, you submit email addresses for verification. These are processed to provide verification results and are temporarily cached.

Usage Data: We log verification requests including the email verified, result, timestamp, and whether the result was cached. This data is associated with your account for billing and usage tracking.

Payment Information: Payment processing is handled by Stripe. We store your Stripe customer ID and subscription ID but never your credit card details directly.

3. How We Use Your Data

  • To provide email verification services as requested via our API
  • To manage your account and process payments
  • To enforce rate limits and usage quotas
  • To improve our service and fix issues

We do not sell, rent, or share your data with third parties for marketing purposes.

4. Data Retention

Verification Cache: Email verification results are cached for up to 24 hours to improve performance and reduce redundant lookups. After 24 hours, cached results are automatically purged.

Usage Logs: Verification logs are retained for billing and analytics purposes for the duration of your account.

Account Data: Your account data is retained until you request deletion. Upon deletion, all associated data (API keys, usage logs, and cached results) is permanently removed.

5. Infrastructure & GDPR

All MailCheck infrastructure is hosted within the European Union. Your data never leaves the EU for processing or storage.

As an EU-based service, we comply fully with the GDPR. You have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Port your data to another service
  • Object to or restrict processing

To exercise any of these rights, contact us at support@mailcheck.dev.

6. Cookies

We use a single, essential cookie: a JWT session cookie to keep you logged in to the dashboard. This cookie is:

  • Strictly necessary for authentication (no consent banner required)
  • HTTP-only and secure
  • Not used for tracking or analytics

We do not use any third-party cookies, analytics trackers, or advertising pixels.

7. Security

We take reasonable measures to protect your data, including:

  • Passwords hashed with industry-standard algorithms
  • All traffic encrypted via TLS/HTTPS
  • API keys stored securely with only prefixes visible in the dashboard
  • CSRF protection on all dashboard forms

8. Contact

For any privacy-related questions or requests, contact us at:

support@mailcheck.dev