🚀 Experience the new and improved APIVoid! Check out what's new
At APIVoid, we prioritize your privacy and are committed to minimizing the data we collect about you. We strive to be transparent about the data we store, the reasons for collecting it, and how it is used. Below, we have outlined some important sections in detail to help you easily understand what data we save, how it is processed, and by whom.
When you visit our website using a web browser or another application, we collect and store certain data, including your IP address, the web pages you visit, your user agent string, and other browser-related information. These logs are standard practice for most websites. We use web servers such as Nginx, Apache, and potentially others, to operate our websites, and these servers automatically log web requests. This data is primarily used for: [1] debugging purposes, to troubleshoot client-side and server-side issues (such as 404 or 502 errors); [2] security purposes, such as identifying potential web attacks, detecting and mitigating abuse (e.g., excessive requests from a single IP address), and ensuring the website’s stability. Web server logs are typically retained for 90 days, after which they are automatically deleted. This data may be stored across different cloud hosting providers, including Google Cloud Platform (located in the US) and Hetzner Online GmbH (located in Germany). For more information on hosting providers we use, please refer to our subprocessors list.
We aim to save as little information as possible when you create an account to use our service. Our system is designed to store only the strictly necessary data, which includes your IP address, email address, and password (encrypted). These details are essential for account creation. You will need to verify your email address to activate your account; any account with an unverified email address will be automatically deleted after 15 days. We use your email address for account-related notifications, such as password reset requests or important updates about your account. The IP address, recorded when you create an account and at each login attempt, is primarily used for security purposes. This helps us identify and prevent activities such as abuse, attacks on our service, or attempts to create duplicate accounts. Your password is stored in an encrypted format using strong encryption methods and computationally intensive iterations to enhance security and protect against cracking attempts. It is used for account authentication along with your email address. All account-related data is securely stored on the Google Cloud Platform (located in the US) and will be retained for as long as your account remains active on our service.
By default, we do not handle payments or invoices directly. Instead, we designed our system to utilize a third-party merchant of record and payment service, Paddle Market Limited (located in the UK), to fully manage payments and invoices for automated monthly and yearly subscriptions. By using our service, you acknowledge that Paddle handles all payments and invoices and that they will process and store the data you provide during the payment process in accordance with their privacy policy. Paddle is a well-known merchant of record, certified with SOC2 Type 2, PCI, and GDPR compliance. You further acknowledge that we can access your data via the Paddle dashboard since they share this information with us. This allows us to verify orders placed through our service and view any details you provided to Paddle during your purchase of our subscription or service. In specific cases, such as for custom contracts or Enterprise plans, we may use Stripe (located in the US) for payments and occasionally PayPal (also located in the US). If you request a quote from us or make a direct payment to our company bank account or credit card, your data will be processed and stored by our tax accountant and the platform Fatture In Cloud by MadBit Entertainment S.r.l. (located in Italy), which we use to create quotes and manage invoices issued directly by our company.
We have minimal interest in your data and even less interest in sharing the limited information we store. The data we collect and store in our systems, such as web server logs, email addresses, and IP addresses used to create accounts, is primarily used internally and for security purposes. However, in certain circumstances, you acknowledge and accept that we may need to share your information with law enforcement or cybersecurity agencies. These circumstances include: [1] if we have reason to believe a website visitor has attempted an attack on our services; [2] if a registered user has provided invalid, fraudulent, or fake information (e.g., a disposable email address) during account creation; [3] if a customer is using our services to engage in unethical or illegal activities that could harm our services, our company, or third-party businesses. Additionally, you acknowledge that we may be legally obligated to provide information about visitors or customers to law enforcement agencies in specific situations and that we are required to comply with such laws.
When you submit data on our API services, we do not store that data anywhere, our APIs process your request and return the JSON report, that's all. With the only exception for domain names such as "google.com" that are sent on the following API services: Domain Reputation API, Domain Age API, Domain Info API, URL Reputation API, Site Trustworthiness API, Email Verify API. In these specific cases we may extract the domain name such as "www.google.com" or "gmail.com" for further analysis and we may share it with cybersecurity companies to improve the detection of new threats. If an API service operates with sessions (e.g., it returns a session ID that must be periodically checked until its status is set to 'completed'), our system may temporarily store this session and its details, along with the final JSON data, typically for a few hours. This temporary storage enables you to check the session status and download the completed JSON report once it is ready. For debugging purposes we may temporarily store API HTTPS requests on Google Cloud Monitoring and Logging (formerly known as Google Stackdriver). This includes only the IP address, the API endpoint URL and the request and response headers; the JSON payload and response body are not stored. This logging helps troubleshoot issues, such as when a user reports an HTTPS request error for a specific API request or encounters unexpected behavior during usage.
Data related to website visitors (e.g., web server logs) is primarily stored on Google Cloud Platform (located in the US) and Hetzner Online GmbH (located in Germany). In some cases, this data may also be stored with other cloud hosting providers. Please refer to our subprocessors list for additional details. Data related to customer accounts on our service is stored entirely on Google Cloud Platform (US). The third-party hosting providers we use adhere to top-tier security standards, implement strict access controls, and are certified under ISO 27001 and/or SOC 2 Type 2. They also comply with GDPR regulations. The data we store when you visit our website or create an account is retained temporarily, as described in the sections above. You may request us to delete your account data, including your email address, IP address, and password associated with your customer account. Upon verifying that the request is from you, we will fully delete this data within 30 days. However, please note that we may not be able to delete data processed and stored by third-party subprocessors, such as payment-related information handled by Paddle or Stripe.
To operate our service, we rely on well-known, trusted, and verified third-party subprocessors. For example, we use Google Cloud Platform (US) for hosting purposes and Twilio Inc. (SendGrid) to send transactional emails to your email address, such as email verification messages. You can visit the subprocessors page to find a complete list of subprocessors we use, their purposes, and their locations. To better understand what data about you is processed by our subprocessors, here is a detailed and comprehensive recap:
Data related to website visitors (such as web server logs) and customer accounts is stored on cloud hosting providers like Google Cloud Platform and Hetzner Online GmbH. Data submitted through our APIs is processed on cloud hosting providers such as Google Cloud Platform. When we need to send you an email in an automated way, we may use transactional email providers such as Twilio Inc. (SendGrid). For managing newsletters, we use services like Brevo (formerly Sendinblue), meaning your email address will be processed and stored on these platforms. Automated subscriptions and payments are handled by payment processors such as Paddle or Stripe, which may process and store personally identifiable information and payment-related details about your purchases. We use tax and invoice management services such as Fatture In Cloud (from MadBit Entertainment S.r.l.) to manage company quotes, invoices, and taxes. If you received a direct quote or invoice from us, your data may be processed and stored on this platform. To provide customer support, we use services like Zendesk, where emails are converted into tickets. This means your email address and messages are processed and stored on these third-party customer support systems. To prevent abuse of our service and to protect web forms, we use captcha systems such as CaptchaFox, which may process your IP address and browser data.
As wrote before, you can find the full list of subprocessors we use on our subprocessors page. We adhere to the principle of data minimization and carefully engage data processors only when it is strictly necessary to efficiently operate our services.
On our website and services, we use cookies primarily to identify you as a registered user or returning visitor, for security purposes, and to store service-required information. These cookies are used solely to provide you with an exceptional service and enhance the usability of the website. Some subprocessors we use to operate our service may also save cookies on your browser for security, debugging, and other standard purposes. For example: CaptchaFox may store cookies to verify if you correctly complete a CAPTCHA; Paddle may store cookies to improve your purchase experience and for security purposes; Stripe and PayPal may store cookies for similar reasons as Paddle, ensuring a seamless purchase experience and security; Zendesk may save cookies if you contact us through their web form. We strive to minimize the use of third-party cookies wherever possible. However, some subprocessors require cookies to ensure the proper functioning of their services, which are integral to our platform. Additionally, we use a cookie-free service, Fathom Analytics, to track visitors while fully respecting your privacy and avoiding any form of personal tracking. You can opt out of certain cookies through your web browser settings. Most browsers allow you to block cookies from specific domains if desired. However, to ensure the proper functioning of our website and services, we recommend enabling cookies in your browser. Please note that some features of our services, such as the dashboard, may not work correctly if cookies are blocked.
We use the email address you provide when creating a customer account on our service to: [1] send you important information related to your account; [2] provide you with exceptional service; [3] share newsletters about our service or company projects. We value your privacy and will never sell or share your email address with third parties. You can opt out of receiving newsletters at any time. However, you cannot opt out of important account-related notifications, such as password reset emails, which are necessary to maintain your account security. When you create an account, your email address will be added to our newsletter subscription list, managed through our subprocessor Brevo (formerly Sendinblue), located in France. You can opt out of this at any time after receiving the first newsletter. Newsletters allow us to send you service-related updates, such as notifications about new product versions or significant updates that may be of interest to you.
Last updated on February 10, 2025
Create your account, pick a subscription plan, and make your first API call instantly with your API key—simple as that!
Get started now