This page explains how WhoWiki protects the data you enter and the checks you run. In short: your searches move over an encrypted connection, we collect as little as possible, and we do not sell your data or use your checks to profile you.
Every connection to WhoWiki uses HTTPS with modern TLS. Data moving between your browser and our servers is encrypted.
We ask for as little as possible. Most checks run without an account, and we do not request details we do not need to give you a result.
Your checks run against public sanctions and business data. We do not use them to build a profile, and we do not sell search data.
WhoWiki runs on established cloud infrastructure. System access is limited to the people who need it and protected by strong authentication.
To report a vulnerability, email security@whowiki.org with a description and the steps to reproduce it. We read every report.
We will not pursue legal action against researchers who act in good faith, avoid privacy violations and service disruption, and give us reasonable time to respond before disclosing.
Please include: the affected URL or feature, a description of the issue, steps to reproduce, and how we can reach you.