Privacy Policy for AbuseIPDB

Quick Links:


Last Updated:

This privacy policy ("Privacy Policy") is intended to provide you with specific details about how AbuseIPDB LLC ("AbuseIPDB," "we," and "us") collects and processes your personal and personally identifiable information through your use of our website, www.abuseipdb.com and associated services ("Website"). AbuseIPDB is the data processor and data controller of all information collected through the Website.

You understand and agree that AbuseIPDB may store and process your personal information on computers located outside of the European Union, including, but not limited to, in the United States. By using the Website, you agree to the collection and processing of your personal or personally identifiable information outside of the European Union.

To the extent possible, our policies and procedures are designed to comply with the applicable data protection laws, such as the General Data Protection Regulation 2016/679 (GDPR), the United Kingdom General Data Protection Regulation, and other national data protection laws.

Before using the Website or providing information to us, please carefully review this Privacy Policy. By using or accessing the Website, you agree that we may collect and use your personal and personally identifiable information in accordance with this Privacy Policy, as revised from time to time. AbuseIPDB may modify, amend, replace, or suspend this Privacy Policy at any time. If you have any questions or suggestions regarding our Privacy Policy, or if your personal information is not accurate or complete, please email us at legal@abuseipdb.com or contact us at:

AbuseIPDB LLC
562 Independence Road
East Stroudsburg, PA 18301
USA

By providing AbuseIPDB with your personal or personally identifiable data and using the Website, you warrant that you are over the age of eighteen (18) or otherwise above the age of majority within your jurisdiction. If you are younger than eighteen (18) or the age of majority within your jurisdiction, please do not use the AbuseIPDB Website and please do not provide personal information to us.

1. Personal Information Collected.

When you use the Website, we may collect personal or personally identifiable information from you ("PII"). PII may include any information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular individual. It does not include anonymized data.

We may collect and process the following categories of PII about you:

  • Communication Data. Communication data includes any communication that you may send to us through the website, email, or social media. We process this data to communicate with you, to provide you with customer support, to record logs of our communication, and to store information to respond to legal claims. AbuseIPDB’s lawful ground for processing this communication data is to respond to communications sent by you to us, to keep records of our communication, and to pursue or defend against legal claims.
  • User Data. User data includes data about how you use the Website and any data that you post to or authorize through the Website. This includes data stored in persistent cookies when you login to the Website and analytics data that is collected when you use the Website. We collect and process this data to operate the Website, to authenticate you as a user of the Website, to ensure that timely and relevant content is provided to you, to secure the Website, to ensure that the Website operates in a fast and efficient manner, and to maintain backups of the Website. AbuseIPDB’s lawful ground for processing this user data is its legitimate business interests in administering and offering the Website.
  • Technical Data. Technical data includes data about your use of the Website, such as your IP address, your login data, your phone number, your mobile device model, your operating system, your geolocation, and your time zone. AbuseIPDB may collect this data from your use of the Website and from advertising IDs. AbuseIPDB processes this data to analyze your use of the Website, to route Website traffic, to administer and secure the Website, to provide location-relevant content, and to troubleshoot problems with the Website. AbuseIPDB’s lawful ground for collecting and processing this technical data is its legitimate interests in administering and offering the Website and to grow its business and marketing strategy.
  • Marketing Data. Marketing data includes data about your preferences in receiving and interacting with AbuseIPDB’s advertisements or content on the Website. AbuseIPDB collects this data from your use of the Website and from advertising IDs created through advertising programs, such as Google Advertising IDs, TikTok Advertising IDs, and Apple Advertising IDs. AbuseIPDB does not connect advertising identifiers to persistent device identifiers, such as MAC addresses or mobile device IDs. AbuseIPDB’s lawful ground for collecting and processing this marketing data is its legitimate interests in administering and offering the Website and to grow its business and marketing strategy by providing advertisements, including remarketing advertisements, to you.
  • Personally Sensitive Data. Personally sensitive data includes data about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, union membership, or information about your health. AbuseIPDB does not collect or use personally sensitive data through the Website.
  • Reported Data. AbuseIPDB exists to collect and report IP addresses associated with abusive behavior like hacking and scamming to reduce the amount of hacking, scamming, and other abusive behavior online. In furtherance of its purpose to reduce abusive behavior, AbuseIPDB collects and reports IP addresses ("Reported Data.") This Reported Data is not associated with any other PII. AbuseIPDB’s lawful ground for collecting and processing Reported Data is (1) the lack of PII tied to Reported Data, (2) processing Reported Data is necessary for the performance of a task carried out in the public interest to reduce abusive behavior online, and (3) processing is necessary to protect the vital interests natural persons who were subjected to the reported abusive behaviors associated with the Reported Data.

AbuseIPDB will only use your PII for the purpose for which it was collected. In the event that AbuseIPDB needs to use your PII for an unrelated new purpose, AbuseIPDB will provide you with notice of this new use and will explain the lawful ground for such processing. AbuseIPDB may process your PII without your knowledge or consent where required or permitted by law.

AbuseIPDB does not use your PII to automatically make any decisions or to create an automated profile about you.

2. Collection of Data From Third Parties.

AbuseIPDB may collect data about you through cookies and other technologies. This helps AbuseIPDB understand how you use the Website and to understand any patterns that may be associated with your use of the Website. This aids AbuseIPDB in developing or improving its Website in response to your needs or wants.

AbuseIPDB will use session or persistent cookies after getting your affirmative consent . Session cookies are only stored on your computer or mobile device during your use of the Website and are automatically deleted when you close your web browser. Session cookies may be used to direct internet traffic to a server that is closer to you or to allow us to identify you as you move between pages of the Website. Persistent cookies are stored as a file on your computer or mobile device that remains on your computer or mobile device even after you close your web browser. Persistent cookies can be read by the website that created the cookie when you revisit it again. AbuseIPDB may use persistent cookies to authenticate you when you return to the Website so that you do not have to login again or when it utilizes Google Analytics or other analytics providers, which is intended to track the origin and behavior of traffic to the Website. AbuseIPDB may use the following analytics providers, and you are directed to review their cookie policies:

AbuseIPDB may also receive data from third parties including analytics providers or advertising networks such as Google, Facebook, or Apple. These third parties may be based outside of the European Union.

3. Marketing Communications.

As stated above, AbuseIPDB’s lawful ground for sending you marketing communications is either consent or its legitimate business interests, such as to grow its business by advertising products to you. AbuseIPDB may send you marketing communications if you have asked for information concerning its goods or services or if you have agreed to, and have not opted out from, receiving marketing communications. You may ask AbuseIPDB to stop sending you marketing messages at any time by logging into the Website to adjust your marketing preferences within your User Account or by following the opt-out link in any marketing message sent to you. If you opt out of receiving marketing communications, your opt-out does not extend to PII provided for other purposes.

4. Disclosure of Personal Information.

AbuseIPDB may share your PII with the following parties:

  • Service providers that provide AbuseIPDB with information technology or other administrative services;
  • AbuseIPDB’s accountants, auditors, insurers, or attorneys;
  • Law enforcement agencies upon the receipt of a subpoena or court order or where necessary to protect AbuseIPDB’s personnel or property; and
  • Government bodies that require AbuseIPDB to report its processing activities.

AbuseIPDB may also transfer PII to third parties when it sells, transfers, or merges any part of its business or assets.

AbuseIPDB requires all third parties that receive a transfer of PII from AbuseIPDB to maintain the same level of respect for the protection of PII as AbuseIPDB and AbuseIPDB only allows third parties to process your personal data for the specific purposes listed in this Privacy Policy.

5. Transfer of Your Personal Data.

AbuseIPDB utilizes several applications that may transfer your PII to third-party providers who are located in countries outside the European Economic Area (EEA). These applications include:

Third-Party Provider Location GDPR Compliance Purpose of App that Stores Data
Google Analytics Mountainview, CA - USA In process Web analytics service
Google Ads Mountainview, CA - USA In process Web marketing service
Carbon - Buysellads Boston, MA - USA In process Web marketing service
PayPal, Inc. (Braintree) Chicago, IL - USA In process Payment processing service
DigitalOcean Holdings, Inc. New York, NY - USA In process Infrastructure service
Slack Technologies Inc. San Francisco, CA - USA In process Communication service
Mailgun Technologies, Inc. San Francisco, CA - USA In process Infrastructure service
Cloudflare, Inc. San Francisco, CA - USA In process Infrastructure service
Freshworks, Inc. San Mateo, CA - USA In process Customer support service

This data transfer outside the EEA is legitimate if the recipient of the data is located in a country which provides an adequate level of protection following a European Commission adequacy decision. Some of these countries may not have equivalent data protection legislation to protection the use of your PII. In this case, we have assessed whether appropriate safeguards as within the EU are possible by, for example, executing standard contractual clauses. In particular cases, we will endeavor to obtain your preliminary consent for transferring your PII outside the EEA. For more information regarding the transfer of information you can follow the procedure as described in Article 7 below (in the ‘Rights of Data Subjects’)

6. Data Security.

AbuseIPDB has put into place data security measures to protect your PII. AbuseIPDB allows access to your PII only by employees and service providers who have a need to know or on AbuseIPDB’ instructions. However, no security measures are impenetrable and there are always security risks. AbuseIPDB will notify you and any regulatory body of any breach of your PII or AbuseIPDB’s security measures if it is legally required to do so.

7. Retention of Data.

AbuseIPDB will only retain your PII for so long as necessary to fulfill the purposes for which it is collected under this Privacy Policy or for the purposes of satisfying any legal, accounting, or reporting requirements. We will also retain and use your PII to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws, such as the California Consumer Privacy Act), resolve disputes, and enforce our legal agreements and policies.

8. Rights of Data Subjects.

You are entitled to see the PII held about you and to obtain a copy of the PII we hold. If your PII has been changed, you are entitled to ask us to rectify or complete or erase the outdated, incorrect, or incomplete PII we have about you. Furthermore, you have the right to restrict the processing of your PII and to object to the processing of your PII. You have also the right to receive your PII, which has been provided to a controller, in a structured, commonly used, and machine-readable format, and you have the right to transmit such PII to another controller.

If you have opted to receive commercial e-mails, newsletters, or other communications from AbuseIPDB at the time you registered on the Website, you may opt-out whenever you have changed your mind.

We may require you to provide verification of your identity to ensure that you have a legitimate right to make the request and to verify that we provide the answer to the person that has the legitimate right to send us one of the above-mentioned requests and to obtain the information.

Please note that in certain circumstances as provided by law we may withhold access to your information or that we may not grant your request where we have the right to do so under applicable data protection legislation. If you wish to obtain more information regarding the processing of your personal data or if you wish to exercise your rights, please contact us at legal@abuseipdb.com or by postal mail at:

AbuseIPDB LLC
562 Independence Road
East Stroudsburg, PA 18301
USA

You have the right to lodge a complaint with the competent supervisory (data protection) authority.

9. California Privacy Rights.

The following rules apply solely to visitors, users, and others who are residents of the State of California. California residents have the right to be notified which categories of PII are being collected and the purposes for which the PII is being used. In particular, we collected the following categories of PII (A, B, D, and F) as defined in the California Consumer Privacy Act within the last twelve months. Our uses of this PII are detailed above in this Privacy Policy:

Category Examples Collected
A. Identifiers Real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, or other similar identifiers. YES
B. Personal information categories listed in the California Consumer Records statute (Cal. Civ. Code § 1798.80(e)) Name, signature, address, telephone number, bank account number, credit card number, debit card number, or any other financial information. YES
D. Commercial Records of products purchased. YES
F. Internet or other similar network activity Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement. YES

We obtain these categories of PII directly from California residents when they complete forms through our website or provide it to us as a part of a transaction or inquiry concerning our products. We also obtain these categories of PII indirectly from California residents while observing their actions on our Website and from third parties or service providers that they have authorized to receive and share PII.

California residents have a right to request that we disclose what PII we collect from you and whether, and how, we disclose or sell that PII. California residents may also request that we delete any personal information collected or maintained by us from you.

AbuseIPDB utilizes Google Analytics and may utilize other internet-based advertising services. To learn more about interest-based advertising across websites and additional opt-out choices, you can visit http://optout.aboutads.info. If you opt out of AbuseIPDB’s collection and/or use of your personal information but do not opt out of interest-based advertising more generally, you may still receive ads tailored to your interests based on PII that was not sold by us, personal information that was sold to downstream participants at least 90 days before you opted out, or personal information that was sold by other sources from which you have not opted out.

To submit a request for a list of the categories of personal information collected from you or to request that AbuseIPDB delete your personal information, please email us at: legal@abuseipdb.com

To verify your request, we may request certain information from you to confirm that you are an AbuseIPDB user, such as your phone number, username, email address, city, state, or geographic location. You may also designate an authorized agent to make a request to AbuseIPDB to disclose or delete your personal information. To do so, you must provide AbuseIPDB with proof that the individual or business has been appointed as your agent, such by providing a signed power of attorney form, and provide accurate responses to any information requested by AbuseIPDB that may be necessary to confirm that you are a AbuseIPDB user, such as your phone number, username, email address, city, state, or geographic location. California residents have a right not to receive discriminatory treatment by AbuseIPDB for their exercise of these rights conferred under California law.

10. Third Party Links.

AbuseIPDB’s Website may include links to third-party websites and applications. By clicking on third-party links, you may allow third parties to collect or share data about you. AbuseIPDB does not control these third-party links and you are advised to review their respective privacy policies.

11. Responding to Do Not Track Signals.

You can generally opt-out of receiving personalized ads from third party advertisers and ad networks who are members of the Network Advertising Initiative (NAI) or who follow the Digital Advertising Alliance’s Self-Regulatory Principles for Online Behavioral Advertising by visiting the opt-out pages on the NAI website and DAA website. Our website is not currently set up to respond to browser do-not-track signals because there is no consensus within the advertising industry as to what "do not track" means in this context, but you can configure your browser settings to reject all cookies or prompt you before a cookie is set.

12. Nevada Residents.

If you are a resident of Nevada, you may provide notice to us to limit the sale of your PII to third parties for resale or licensing purposes. However, we do not sell your PII for such use. To notify us that you wish to limit the sale of your PII to third parties for resale or licensing purposes, you may send us an email [email address] with the subject line, "Nevada Do Not Sell Request," along with your name, address, and user account information.

13. Children’s Privacy.

We do not direct the Website to anyone under the age of 13 and we do not knowingly collect PII from anyone under the age of 13. If you are a parent or guardian of an individual under the age of 13 and believe that we may have collected PII from your child, please contact us at legal@abuseipdb.com.

14. Notification of Changes.

Whenever AbuseIPDB changes its Privacy Policy, we will post those changes to this Privacy Policy on the Website and other places that we deem appropriate. Your use of the AbuseIPDB Website following these changes indicates your consent to the practices described in the revised Privacy Policy.

15. Contact Us.

If you have any questions about this Privacy Policy or the manner by which we collect or use Personal Information about you, email us at legal@abuseipdb.com.