A "breach" is an incident where data from a system is unintentionally exposed, usually due to cyberattacks or security failures. Our service uses the renowned Have I Been Pwned (HIBP) database as the sole source to check if your email has been exposed in any of these breaches.

Not necessarily. If your email does not appear in our results, it means it has not been found in the breaches that HIBP has on record, which is the largest database of its kind. However, many breaches are never made public or are never discovered. Absence of evidence is not evidence of absence. We recommend always following good security practices.

There are several possible reasons: (1) The service was renamed or acquired by another company. (2) A company you did interact with shared your data with a third party. (3) Someone may have registered your email address without your consent.

No. The searches you perform on our site are anonymous and are not logged. We do not store the email addresses checked with the free tool. We only store the emails of users who explicitly subscribe to our paid or notification services, for the sole purpose of providing that service.

No. That would be a very insecure practice and would put both users and us at risk. Our goal is to inform you of the risk, not to distribute sensitive information.

Algunas filtraciones provienen de sitios de naturaleza sensible (por ejemplo, sitios de citas o foros políticos). Para proteger la privacidad de los afectados, HIBP clasifica estas filtraciones como "sensibles" y no se muestran en búsquedas públicas. Solo el dueño verificado de la cuenta de correo puede ver si ha sido afectado por una de ellas a través de servicios de notificación.

Sometimes, the data doesn't come from a direct hack, but from lists compiled to send mass spam. These lists can contain personal data (names, emails, phone numbers) and, although they may not include passwords, they pose a risk to your privacy. That's why we also report them.