When using certain services provided by me and accessing my website, along with any other website hosted, managed, or written by me, I always ensure privacy is one of my top priorities. I am a strong advocate for data privacy, transparency, and control and I only collect the information required to make my services work. Unnecessary data collection is harmful and should have no place on the internet.
Database.red is operated under the legal jurisdiction of the United States. Servers and instances are hosted in varying parts of the world which include the US and Germany. Our upstream providers have their own privacy policies which apply separately and as such you are recommended to view them as well.
When you access or use any service operated by Database.red, my servers automatically collect certain information to complete the query and mitigate abusive activities.
The following information is collected on all Database.red services by Apache/Nginx:
All data except account data (on services that require it) is wiped every 12-24 hours, unless retainment is required to mitigate abuse or comply with legal requests.
ProxyNet is a proxy/VPN lookup service. In order for ProxyNet to work, website and application operators need to submit client IP addresses to ProxyNet for analysis. Security and privacy of this data is taken with extreme care and I have implemented
measures to ensure that data such as client/server IP addresses and lookup data are not accessible beyond a certain period of time. When a request is made to the ProxyNet systems, a SHA-512 hash of the client IP address is generated to store its proxy/no proxy result in a volatile, temporary cache for lower response times on repeated lookups. This also guarantees that I do not know the IP addresses a server sends to ProxyNet for analysis. The cache is wiped every 1 hour, and the whole ProxyNet instance is refreshed in a zero-downtime manner every 24 hours.
The server IP address, timestamp, and a count of lookups is stored in a central database to mitigate abuse. The lookup count is rolling and expires every 30 days. If there is no activity from the IP address in 7 days it is automatically purged from the database. Actual lookups are not stored centrally and are used for caching purposes only as mentioned above.
Account data as described in Section I can be accessed and deleted at any time. Log into the service provided by me and follow the instructions to request your data and/or delete your account. Any other data is wiped automatically, so
manual request of deletion is not necessary.
At any time you may exercise your GDPR or CCPA rights to any of my services that require me to store Personally Identifiable Data (PII).