Privacy

Privacy Policy

Last updated: January 15, 2025

        Your privacy is fundamental to our service. starlookups.cc operates under a strict zero-logs policy. We do not store, record, or retain any user data, search queries, or results.
    

1. Zero-Logs Policy

We maintain a strict zero-logs policy.
starlookups.cc does not log, store, or retain any information about your searches, your identity, or your activity on our platform. When you perform a lookup, the query is processed in real-time, results are returned directly to your browser, and nothing is saved on our servers. Period.

Specifically, we do not log or store:

IP addresses

Search queries

Lookup results

Browser fingerprints

User agents

Timestamps

Cookies or trackers

Session data

All lookups are processed transiently in memory. Once results are delivered to your browser, no record of the query exists on our infrastructure. We have no ability to reconstruct, replay, or retrieve any past search activity.

2. What Happens When You Search

Here is exactly what occurs when you perform a lookup:

Your query is received by our server over an encrypted HTTPS connection
The query is forwarded in real-time to third-party APIs to retrieve publicly available data
Results from those APIs are assembled and returned directly to your browser
The query and results are immediately discarded from server memory
Nothing is written to disk, database, or any persistent storage

3. No Accounts, No Tracking

starlookups.cc is designed to be used without any form of identification:

We do not require user accounts or registration
We do not use analytics platforms (no Google Analytics, no Mixpanel, no Plausible)
We do not use tracking cookies, advertising pixels, or any form of browser fingerprinting
We do not use local storage or session storage to track your activity
We do not build user profiles or behavioral models
We do not sell, share, or monetize any user data — because we don't have any

4. hCaptcha

The only third-party service that interacts with your browser is hCaptcha, which is used for bot protection. When you complete a captcha challenge:

hCaptcha may collect technical data as described in their privacy policy
We receive only a simple pass/fail verification result
We do not store the captcha token or verification result after the request completes

We chose hCaptcha specifically because it is more privacy-respecting than alternatives like reCAPTCHA. hCaptcha does not sell personal data and is GDPR-compliant.

5. Third-Party Data Sources

When you perform a lookup, your query is forwarded to third-party APIs that provide publicly available data. These may include:

Discord API — public user profile information
Platform APIs — public account existence checks (Apple, Spotify, Twitter, Uber, Pinterest, Samsung)
Breach notification databases — publicly disclosed data breach information

We do not control the privacy practices of these third-party services. Your query (Discord ID or email) is sent to these services as necessary to process your request. We encourage you to review their respective privacy policies.

Important: We do not send your IP address, browser information, or any identifying data about you to these third-party APIs. Only the search query itself is forwarded.

6. Data Security

Although we don't store data, we still implement security measures to protect the data in transit:

All connections are encrypted with TLS/HTTPS
Rate limiting is applied to prevent abuse
Captcha verification prevents automated scraping
No database exists that could be breached — there is nothing to steal

No data at rest means no breach risk.
Because we maintain a zero-logs policy and do not store any user data in any database or file system, there is no user data that could be compromised in a security incident. This is by design.

7. Law Enforcement & Legal Requests

Because we maintain a strict zero-logs policy, we have no data to provide in response to legal requests, subpoenas, or court orders. We cannot identify users, reconstruct search history, or provide any records — because those records do not exist.

If we receive a valid legal request, we will respond truthfully that we do not possess the requested information due to our zero-logs architecture.

8. Data About Third Parties

The Service returns publicly available information about third parties (e.g., Discord users, breach data). This data comes from public sources and third-party APIs — not from our own databases.

If you believe your personal information is being returned by a third-party data source through our Service and you wish to have it addressed, you may contact us at abuse@starlookups.cc. We will make reasonable efforts to assist, though removal of data from upstream sources is outside our direct control.

9. Children's Privacy

The Service is not intended for use by anyone under 18 years of age. Since we do not collect or store any personal data, we cannot knowingly or unknowingly collect information from minors.

10. International Users

The Service may be accessed globally. Our zero-logs policy is designed to exceed the requirements of privacy regulations worldwide, including:

GDPR (European Union) — no personal data is processed beyond the transient request
CCPA (California) — no personal information is sold or shared
PIPEDA (Canada) — no personal information is collected or retained

Since we do not store data, the concepts of data portability, data access requests, and data deletion are inherently satisfied — there is nothing to port, access, or delete.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. Our commitment to zero-logs will not change — if anything, we will only strengthen our privacy protections. Continued use of the Service after changes constitutes acceptance of the updated policy.