Privacy Policy


We use services from both Facebook (when actually interacting with the bot) and Google (when you are on our website) for Analytics. You can read below about the basic information these services collect. When you connect with BreachBot on Facebook, we can see your Profile Name, but we do not collect any other information from your profile - we can't see your email address, your friends, or anything else of that sort. During the Equifax Breach flow, BreachBot will ask you what state you live in, if you choose to answer him, we collect this attribute so we can get a better idea of the general audience that is using BreachBot. You can also subscribe to Breach Alerts, when you tell us you would like to receive those, we add your Facebook Messenger ID to an attribute that we'll use to broadcast a breach alert to. We link to some external services and websites while you're using to BreachBot and we have no control over what data they collect or how. We also use Drift which allows you to chat with us directly from this website - it collects some basic analytic information and those live chat conversations are logged.

If you text BreachBot via SMS, we're using Twilio, which does collect your phone number in the logs. We dump our logs weekly.

We're learning some basic things about your like your estimated age group and what state you live in. We don't sell any of this data, we just use it to improve BreachBot and find out target audiences. Below is a super generic privacy policy that outlines some basics.

Types of Data Collected

Among the types of Personal Data that this Application collects, by itself or through third parties, there are: Usage Data, Cookies and unique device identifiers for advertising (Google Advertiser ID or IDFA, for example).

Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or by specific explanation texts displayed prior to the Data collection. The Personal Data may be freely provided by the User, or, in case of Usage Data, collected automatically when using this Application.

The Personal Data may be freely provided by the User, or, in case of Usage Data, collected automatically when using this Application.

Mode of Processing the Data

The Data Controller processes the Data of Users in a proper manner and shall take appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.

The Data is kept for the time necessary to provide the service requested by the User, or stated by the purposes outlined in this document, and the User can always request that the Data Controller suspend or remove the data.

Facebook Analytics for Apps (Facebook, Inc.)

Facebook Analytics for Apps is an analytics service provided by Facebook, Inc.

Personal Data collected: Usage Data and various types of Data as specified in the privacy policy of the service.

Facebook US – Privacy Policy

Google Analytics for Firebase (Google Inc.)

Google Analytics for Firebase or Firebase Analytics is an analytics service provided by Google Inc. In order to understand Google's use of Data, consult Google's partner policy.

Firebase Analytics may share Data with other tools provided by Firebase, such as Crash Reporting, Authentication, Remote Config or Notifications. The User may check this privacy policy to find a detailed explanation about the other tools used by the Owner.

This Application uses identifiers for mobile devices (including Android Advertising ID or Advertising Identifier for iOS, respectively) and technologies similar to cookies to run the Firebase Analytics service.

Users may opt-out of certain Firebase features through applicable device settings, such as the device advertising settings for mobile phones or by following the instructions in other Firebase related sections of this privacy policy, if available.

Personal Data collected: Cookies, unique device identifiers for advertising (Google Advertiser ID or IDFA, for example) and Usage Data.

Google USA – Privacy Policy

This type of service allows Users to interact with third party live chat platforms directly from the pages of this Application, for contacting and being contacted by this Application support service. If one of these services is installed, it may collect browsing and Usage Data in the pages where it is installed, even if the Users do not actively use the service. Moreover, live chat conversations may be logged.

Drift Widget (, Inc.)

The Drift Widget is a service for interacting with the Drift live chat platform provided by, Inc.

Personal Data collected: Cookies, Usage Data and various types of Data as specified in the privacy policy of the service.

Drift USA – Privacy Policy

Twilio, Inc.

Managing contacts and sending messages.

Personal Data collected: Phone Number

Twilio, Inc. – Privacy Policy

Additional Information About Data Collection and Processing

Additional information about User's Personal Data

In addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information concerning particular services or the collection and processing of Personal Data upon request.

System Logs and Maintenance

For operation and maintenance purposes, this Application and any third party services may collect files that record interaction with this Application (System logs) or use for this purpose other Personal Data (such as IP Address).

Information Not Contained in This Policy

More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time. Please see the contact information at the beginning of this document.

The Rights of Users

Users have the right, at any time, to know whether their Personal Data has been stored and can consult the Data Controller to learn about their contents and origin, to verify their accuracy or to ask for them to be supplemented, cancelled, updated or corrected, or for their transformation into anonymous format or to block any data held in violation of the law, as well as to oppose their treatment for any and all legitimate reasons. Requests should be sent to the Data Controller at the contact information set out above.

This Application does not support “Do Not Track” requests.
To determine whether any of the third party services it uses honor the “Do Not Track” requests, please read their privacy policies.

Changes to This Privacy Policy

The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to its Users on this page. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom. If a User objects to any of the changes to the Policy, the User must cease using this Application and can request that the Data Controller remove the Personal Data. Unless stated otherwise, the then-current privacy policy applies to all Personal Data the Data Controller has about Users.

UPDATED 04.04.2018.

© Copyright 2018. Made with ❤️ in VA.