Privacy Policy
This policy explains what personal information VerifyMaill handles, why, and the choices you have. We don't sell your data, full stop.
1. Who We Are
VerifyMaill is an email verification and deliverability platform operated by 47labz ("we", "us"), at https://verifymaill.com. For the purposes of data-protection law, the data controller for the information described in Section 2(a) is 47labz, contactable at team@verifymaill.com.
2. Our Two Roles
Because of what we do, we handle personal data in two distinct roles. The difference matters:
- (a) As a controller: for your relationship with us
- When you visit our site, create an account, pay, or contact support, we decide how your personal data is used. This Privacy Policy governs that data.
- (b) As a processor: for the lists you verify
- When you upload email addresses to verify, those belong to your contacts, and you decide why they're processed. There, you are the controller and we act on your instructions as your processor. That relationship is governed by our Data Processing Agreement and our GDPR page, not by this policy.
3. Information We Collect
Information you give us
- Account data: name, email address, password, and organisation details.
- Billing data: handled by our payment provider Polar; we receive limited confirmation and invoice details, not your full card number.
- Support data: messages and attachments you send us.
- Customer Data: the email addresses and related fields you submit for verification. We process these as your processor (see Section 2).
Information we collect automatically
- Usage and log data: IP address, device and browser type, pages and API endpoints used, timestamps, and similar diagnostics.
- Cookies and similar technologies: see our Cookie Policy.
4. How We Use It
We use the information above to:
- provide, maintain and secure the Service, and verify the addresses you submit;
- process payments, manage credits, and send service and account messages;
- provide support and respond to your requests;
- monitor, prevent and investigate abuse, fraud and security incidents;
- improve the Service and develop new features (using aggregated or de-identified data wherever possible); and
- comply with our legal obligations and enforce our agreements.
We do not sell your personal data, and we do not use the contents of your uploaded lists for advertising or to build profiles.
5. Legal Bases
Where the GDPR or UK GDPR applies, we rely on these legal bases: performance of a contract (to provide the Service you signed up for), legitimate interests (to secure, support and improve the Service, balanced against your rights), consent (for non-essential cookies and any optional marketing, which you can withdraw at any time), and legal obligation (for example tax and accounting records). Our full GDPR disclosures are on the GDPR page.
7. International Transfers
We operate from India and use providers that may store or process data in other countries, so your information may be transferred internationally. Where we transfer personal data of individuals in the EEA or UK to a country without an adequacy decision, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses (and the UK Addendum), together with additional measures where needed. You can ask us for more detail about these safeguards using the contact below.
8. Data Retention
We keep personal data only as long as we need it. In particular:
- Uploaded lists and verification results stay in your account until you delete them; you can delete them at any time, and deletion is permanent (no soft-delete or hidden copies).
- Account data is kept while your account is open and deleted within 30 days of account closure.
- Billing and tax records are kept for as long as the law requires us to keep them.
- Logs and security data are kept for a limited period for diagnostics and abuse prevention.
9. Security
We protect your data with appropriate technical and organisational measures, including: encryption in transit (TLS) and at rest (AES-256), least-privilege access controls, and monitored infrastructure. No system is perfectly secure, but we work to protect your data and to respond quickly if something goes wrong. If a breach affects your personal data, we will notify you and any regulator as required by law.
10. Your Privacy Rights
Depending on where you live, you may have the right to access, correct, delete, or receive a copy of your personal data; to object to or restrict certain processing; and to withdraw consent. To exercise any of these, email team@verifymaill.com. We will respond within the time the law requires (usually within 30 days). You will not be charged for a reasonable request, and you can complain to your local data-protection authority if you are unhappy with our response.
If your request concerns email addresses someone else uploaded to verify, we may need to refer you to that customer (the controller), and we will help them respond.
11. California Privacy (CCPA / CPRA)
If you are a California resident, you have the right to know what personal information we collect and how we use it, to request deletion, to correct it, and to not be discriminated against for exercising your rights. We do not sell or share your personal information as those terms are defined under California law. To exercise your rights, contact team@verifymaill.com.
13. Children's Privacy
The Service is for business use and is not directed to children. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided us data, contact us and we will delete it.
14. Changes
We may update this policy from time to time. If a change is material, we will give reasonable notice. The version posted on this page is always the current one.
15. Contact
For any privacy question or request, email team@verifymaill.com, or write to 47labz (VerifyMaill), India.