Sherlockeye - Open Source Intelligence Search Engine

Sherlockeye Tecnologia Ltda. (hereafter 'Sherlockeye') is committed to protecting the privacy and security of its users. This Privacy and Security Policy outlines how we collect, use, protect, and disclose personal and sensitive information when our services are used, through a platform built with Cloudflare Pages and integrated with Microsoft Clarity for analytics and Clerk for secure registration and authentication.

Registered in Brazil under CNPJ 57.793.041/0001-08, Sherlockeye provides OSINT (Open Source Intelligence) solutions focused on the collection and analysis of public data associated with digital identifiers such as usernames, emails, and phone numbers. Our services are intended for professionals and institutions engaged in lawful digital analysis, including public safety agencies, verified journalists, and cyber intelligence specialists.

1. Data Minimization and Purpose Limitation

Sherlockeye collects only the data strictly necessary for account management, service provision, and platform enhancement. This includes registered email addresses and service usage metrics, such as the number of API queries. Searches are performed in real-time, querying public sources. Sherlockeye does not collect or log specific search targets' data beyond what is linked and encrypted in the user's account.

2. Encrypted Query Logging

All search queries and their results are stored in encrypted format for a maximum of 30 days. Sherlockeye does not log or identify investigated subjects. Users are responsible for saving their results locally, as stored information is not updated automatically. A new search must be performed to obtain updated data.

3. Third-Party Services

Sherlockeye uses Cloudflare (for infrastructure), Microsoft Clarity (for anonymous analytics), and Clerk (for secure user authentication). Each provider maintains its own privacy policy. Users are encouraged to review these third-party policies to understand how their data is processed.

4. User Responsibilities

Users must consider legal and ethical standards applicable in their jurisdictions when using the platform. Sherlockeye does not take responsibility for how the data is used. It is the user's duty to ensure their use complies with all applicable laws and guidelines.

5. Data Security Measures

Sherlockeye implements industry-standard security measures to protect personal data from unauthorized access or misuse. Users are also advised to securely manage their API tokens and login credentials.

6. Information Collection

We collect: (i) contact data such as email for account management and support; (ii) service usage data, like API queries; (iii) anonymous data from Cloudflare and Microsoft Clarity; (iv) authentication data via Clerk, including login credentials and tokens. In cases involving personal or sensitive identifiers, users must obtain appropriate authorization and comply with privacy best practices.

7. Use and Disclosure of Information

Collected information is used to maintain and improve our services, communicate updates, resolve issues, and ensure legal compliance. We do not share personal data unless: (i) required by law; (ii) with user consent; (iii) with operational partners under confidentiality agreements; (iv) during corporate restructuring events such as mergers or acquisitions.

8. Data Retention and Privacy Compliance

Only essential data is retained for service provision and account management. Sherlockeye complies with global data protection standards, including the Brazilian LGPD and the European GDPR, ensuring that all data collection and processing is based on consent and necessity.

9. Policy Updates and Modifications

This policy may be updated to reflect changes in legal requirements or operational practices. Users will be notified of material changes. We recommend regular review of this policy to stay informed.

10. Contact Information

For questions, concerns, or to exercise your data rights, contact our Data Protection Officer (DPO): DPO Sherlockeye Av. Cel Lucas de Oliveira, 810, Bairro Petrópolis, Porto Alegre, Rio Grande do Sul, Brasil CEP 90440-010 E-mail: contact@sherlockeye.io

Thank you for trusting Sherlockeye. We are dedicated to delivering reliable and secure OSINT tools with transparency, ethical responsibility, and full respect for your privacy.