V
ValidMail

Privacy Policy

Last updated: December 17, 2025

ValidMail ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our email verification service.

1. Information We Collect

1.1 Information You Provide

We collect information you voluntarily provide when you:

  • Create an account: Name, email address, password, company name (optional)
  • Subscribe to a plan: Payment information (processed by Paddle, our payment provider)
  • Use our service: Email addresses submitted for verification
  • Contact us: Name, email, and message content

1.2 Information Collected Automatically

When you access our service, we automatically collect:

  • Device information: Browser type, operating system, device type
  • Usage data: Pages visited, features used, API calls made
  • Log data: IP address, access times, referring URLs
  • Cookies: Session cookies for authentication and preferences

1.3 Email Addresses Submitted for Verification

When you use our verification service, you submit email addresses for validation. We process these emails to provide our service but:

  • We do not store email addresses permanently unless you enable verification history
  • We do not sell or share the email addresses you verify with third parties
  • We do not use verified emails for marketing purposes
  • Verification data is processed in real-time and not retained after processing

2. How We Use Your Information

We use the collected information to:

  • Provide, maintain, and improve our email verification service
  • Process transactions and send related information
  • Send administrative messages, updates, and security alerts
  • Respond to your comments, questions, and support requests
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues and fraud
  • Comply with legal obligations

3. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), we process your data based on:

  • Contract performance: To provide our services as agreed
  • Legitimate interests: To improve our services and prevent fraud
  • Legal obligations: To comply with applicable laws
  • Consent: Where you have given explicit consent

4. Information Sharing and Disclosure

We may share your information with:

4.1 Service Providers

Third-party companies that help us operate our service, including:

  • Paddle (payment processing)
  • Cloud hosting providers
  • Analytics services
  • Customer support tools

4.2 Legal Requirements

We may disclose your information if required by law or if we believe disclosure is necessary to:

  • Comply with legal processes or government requests
  • Enforce our Terms of Service
  • Protect our rights, privacy, safety, or property
  • Protect against legal liability

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5. Data Retention

We retain your information for as long as necessary to:

  • Provide our services to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements

Specific retention periods:

  • Account data: Retained while your account is active, deleted 30 days after account closure
  • Verification history: Retained for 90 days if enabled, then automatically deleted
  • Payment records: Retained for 7 years for tax and legal compliance
  • Log data: Retained for 90 days for security and debugging

6. Data Security

We implement appropriate security measures to protect your information:

  • All data is encrypted in transit using TLS 1.3
  • Passwords are hashed using industry-standard algorithms
  • API keys are stored as secure hashes
  • Access to personal data is restricted to authorized personnel
  • Regular security audits and vulnerability assessments
  • Data centers with SOC 2 compliance

However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

7. Your Rights

Depending on your location, you may have the following rights:

7.1 All Users

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and data
  • Export your data
  • Opt out of marketing communications

7.2 EEA Residents (GDPR)

  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

7.3 California Residents (CCPA)

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt out of the sale of personal information
  • Right to non-discrimination for exercising your rights

Note: We do not sell personal information as defined by the CCPA.

8. Cookies and Tracking

8.1 Cookies We Use

  • Essential cookies: Required for authentication and security
  • Functional cookies: Remember your preferences
  • Analytics cookies: Help us understand how you use our service

8.2 Managing Cookies

You can control cookies through your browser settings. Disabling essential cookies may affect the functionality of our service.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • Standard contractual clauses approved by the European Commission
  • Data processing agreements with all service providers
  • Compliance with applicable data protection laws

10. Children's Privacy

Our service is not intended for children under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will delete it promptly.

11. Third-Party Links

Our service may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to review their privacy policies before providing any information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the new policy on this page
  • Updating the "Last updated" date
  • Sending an email notification for significant changes

13. Data Protection Officer

For questions about our data practices or to exercise your rights, contact our Data Protection Officer at:

  • Email: privacy@validmail.io

14. Contact Us

If you have questions about this Privacy Policy, please contact us at: