Privacy Policy
Last Updated: 26 January 2025
Our Privacy Commitment: We respect your privacy. RouteChecker operates on a minimal data collection principle. We do NOT store IP addresses, use cookies, create user accounts, or employ any tracking mechanisms.
1. Data Controller
Name: Petacomm
Email: [email protected]
Website: routechecker.co.uk
2. What Data We Collect
When you use our URL redirect analysis service, we process the following limited data:
| Data Type | How We Obtain It | Purpose |
|---|---|---|
| Country Code | Derived from your IP address (IP not stored) | Geographic usage statistics |
| Browser Family | Extracted from User-Agent header | Browser compatibility analysis |
| Operating System Family | Extracted from User-Agent header | Platform-specific error detection |
| Device Type | Extracted from User-Agent header | Mobile vs desktop usage analysis |
| Domain Name | Extracted from URL you submit | Service core functionality |
| Redirect Metadata | HTTP response analysis | Redirect chain analysis |
2.1 What We DO NOT Collect
- IP Addresses: Your IP is used momentarily to determine country code, then immediately discarded
- Browser/OS Versions: Only family names (e.g., "Chrome", not "Chrome 120.0.0.0")
- URL Paths or Query Parameters: Only domain names (e.g., "example.com", not "example.com/user/123?token=abc")
- Cookies or Tracking IDs: We don't use cookies or any tracking technologies
- User Accounts: No registration, no login, no personal identifiers
- Precise Timestamps: Timestamps rounded to the hour
3. Legal Basis for Processing (GDPR Article 6)
We process data under Article 6(1)(f) - Legitimate Interest:
- Our legitimate interest: System security, error debugging, service improvement, abuse prevention
- Necessity test: Without basic operational logs, we cannot maintain system security or troubleshoot technical issues
- Balancing test: Data processed is minimal and anonymous. You cannot be identified from the data we collect
Result: No user consent or cookie banner is required under GDPR and UK GDPR (ICO guidance).
4. How We Use Data
- System Maintenance: Identifying technical errors and performance issues
- Security: Detecting abuse, preventing DDoS attacks, identifying malicious patterns
- Analytics: Understanding geographic distribution and browser compatibility
- Service Improvement: Optimizing redirect analysis algorithms
5. Third-Party Data Sharing
5.1 IP Geolocation Service
We use ip-api.com to convert your IP address to a country code. This service:
- Receives your IP address temporarily
- Returns only your country code (e.g., "GB", "TR")
- Your IP is NOT stored by us or ip-api.com for this query
Alternative: We are transitioning to a local GeoIP database (MaxMind GeoLite2) to eliminate third-party data sharing entirely.
5.2 No Other Third Parties
We do NOT share data with:
- Advertising networks
- Analytics platforms (no Google Analytics)
- Social media companies
- Data brokers
6. Data Retention
| Log Type | Retention Period | Automatic Deletion |
|---|---|---|
| Operational Logs | 7 days | Daily automated cleanup |
| Aggregated Statistics | 2 years | Anonymous, no personal data |
After retention periods, data is permanently deleted and cannot be recovered.
7. Data Security (GDPR Article 32)
- Encryption at Rest: Database encrypted with AES-256
- Encryption in Transit: HTTPS/TLS 1.3 for all connections
- Access Control: Limited access to authorized personnel only
- Audit Logging: All database access is logged
- Regular Security Audits: Penetration testing every 6 months
8. Your Rights Under GDPR
8.1 Rights That Cannot Be Exercised
Because we collect anonymous data that cannot be linked to you, the following rights do not apply:
- Right of Access (Article 15): We cannot identify which logs belong to you
- Right to Erasure (Article 17): We cannot locate your specific data to delete
- Right to Rectification (Article 16): Data is not attributable to individuals
- Right to Data Portability (Article 20): No personal data to export
8.2 Rights You Can Exercise
- Right to Object (Article 21): You can choose not to use our service
- Right to Lodge a Complaint: Contact the UK Information Commissioner's Office (ICO) at ico.org.uk
9. Children's Privacy
Our service does not knowingly collect data from children under 13. If you believe a child has used our service, please contact us.
10. International Data Transfers
Our servers are located in United Kingdom, Portsmouth. The only international transfer is the temporary IP-to-country lookup via ip-api.com (US-based), which does not store your IP. Additionally, data is also transferred to and securely stored on our mainframe in Istanbul, Turkey, with encryption to ensure data protection.
11. Changes to This Policy
We may update this policy to reflect service changes or legal requirements. Material changes will be announced on our homepage.
12. Cookie Policy
We do NOT use cookies. No cookie banner is required.
13. Contact Us
For privacy questions or to exercise your rights:
Email: [email protected]
Website: routechecker.co.uk
UK Information Commissioner's Office (ICO):
Website: ico.org.uk
Helpline: 0303 123 1113