Legal Document

Privacy Policy

Last updated: January 2026

This Privacy Policy explains how Fraudcache collects, uses, and protects your information. Fraudcache is registered in the Netherlands. We are committed to GDPR compliance and data protection.

1. Data Controller

The data controller for personal data collected through Fraudcache is:

Fraudcache

Hedikhuizerweg 7F

5222 BC 's-Hertogenbosch

Netherlands

Chamber of Commerce (KVK): 88528251

VAT Number (BTW): NL864669999B01

All data is stored within the European Union.

2. What Data We Collect

Public Abuse Data

Our core service involves collecting and processing publicly available IP address reputation data, including:

IP addresses reported for malicious activity
Abuse reports from public sources and partners
Timestamps and categories of reported activity

Account Data

If you create an account, we collect:

Email address
Password (hashed)
API keys generated for your account

Usage Data

We automatically collect:

API request logs (IP, timestamp, endpoint)
Browser type and device information
Pages visited and actions taken

3. How We Use Your Data

Service Operation: To provide IP reputation lookups and blocklist feeds
Account Management: To manage your account and API access
Service Improvement: To analyze usage patterns and improve our service
Security: To detect and prevent abuse of our service

4. Legal Basis for Processing

Legitimate Interest: Processing IP reputation data to provide security services
Contract: Processing account data to provide services you requested
Consent: For optional communications and cookies

5. Data Retention

IP Reputation Data: Retained while relevant for threat detection, typically up to 2 years
Account Data: Retained while your account is active, plus 30 days after deletion
Usage Logs: Retained for 90 days for security and debugging purposes

6. Data Sharing

We do not sell your personal data.

We may share data with:

Service Providers: Hosting and infrastructure providers within the EU
Legal Requirements: When required by law or valid legal process
Business Transfers: In connection with a merger or acquisition

Third-Party Service Providers

We use the following third-party services to operate our platform:

Cloudflare, Inc.

Security and bot protection using Cloudflare Turnstile. Provides CDN, DDoS protection, and human verification without intrusive CAPTCHAs.

Google Analytics (Google LLC)

Website analytics to understand visitor behavior and improve our service. Collects anonymized usage data.

PostHog Inc.

Product analytics to improve our platform. Collects usage patterns and feature adoption data.

All processors are bound by data processing agreements in accordance with GDPR Article 28.

7. Data Location

All data is stored and processed within the European Union. We do not transfer data outside the EU.

8. Your Rights

Under GDPR, you have the right to:

Access: Request a copy of your personal data
Rectification: Correct inaccurate personal data
Erasure: Request deletion of your personal data
Portability: Receive your data in a portable format
Object: Object to processing based on legitimate interest
Complaint: Lodge a complaint with a supervisory authority

To exercise these rights, contact privacy@fraudcache.com.

9. Cookies

We use cookies and similar technologies to provide and improve our services:

Essential Cookies: Required for site functionality, including session management, security (CSRF protection), and Cloudflare Turnstile bot verification.
Analytics Cookies: Optional cookies from Google Analytics and PostHog to understand how visitors use our service and improve the user experience.

You can manage your cookie preferences through our cookie consent tool or your browser settings. Essential cookies cannot be disabled as they are necessary for the website to function.

10. Security

We implement appropriate technical and organizational measures to protect your data, including encryption, access controls, and regular security audits.

11. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes by posting a notice on our website.

12. Contact

For privacy-related questions, contact our Data Protection Officer: