IMELook ("we", "us", "our") is committed to protecting your personal data. This Privacy Policy explains what information we collect, how we use it, and your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Who We Are
IMELook is a professional IMEI check and phone unlocking service operated under the laws of England and Wales. For any privacy-related matters, contact us at hello@imelook.com.
What Data We Collect
When you create an account or use our services, we may collect:
- Account information: name, email address, company name
- Billing information: chosen currency, payment transaction records (card details handled by Stripe — never stored by us)
- Usage data: IMEI numbers submitted for checking, order history, API usage logs
- Technical data: IP address, browser type, session tokens
- Communications: support messages and tickets you send us
Why We Collect It
We use your data to:
- Create and manage your account
- Process your IMEI check and unlock orders
- Handle payments and maintain billing records
- Send transactional emails (account verification, password reset, order confirmations)
- Provide customer support
- Detect and prevent fraud or misuse
- Comply with our legal obligations
Our legal basis is contract performance (to provide the service you signed up for) and legitimate interests (fraud prevention, service security).
Who We Share It With
We do not sell your personal data. We share it only with trusted third parties necessary to provide the service:
- Stripe — payment processing
- Resend — transactional email delivery
- Railway — cloud hosting and infrastructure
- IMEI data providers — IMEI numbers are submitted to manufacturer databases to retrieve check results
How Long We Keep It
- Account data is deleted within 30 days of a closure request
- Order history and transaction records are kept for 7 years for legal/tax compliance
- Support communications are kept for 2 years
Your Rights
Under UK GDPR, you have the following rights:
Right to AccessRequest a copy of the data we hold
Right to RectificationAsk us to correct inaccurate data
Right to ErasureRequest deletion of your personal data
Right to PortabilityReceive your data in a portable format
Right to ObjectObject to processing based on legitimate interests
Right to RestrictRequest we limit how we process your data
To exercise any of these rights, email hello@imelook.com. We will respond within 30 days. You also have the right to complain to the ICO at ico.org.uk.
Cookies
We use only a single session cookie to keep you logged in. This cookie is essential for the service to function and does not track you across other websites. We do not use advertising or analytics cookies.
Security
Passwords are hashed using PBKDF2-SHA512 and never stored in plain text. API keys are not stored in plain text. All data is transmitted over HTTPS. We regularly review our security practices to protect against unauthorised access.