Effective Date: 29th April 2025
Sherlockeye Tecnologia Ltda. (hereafter 'Sherlockeye') is committed to protecting the privacy and security of its users. This Privacy and Security Policy outlines how we collect, use, protect, and disclose personal and sensitive information when our services are used, through a platform built with Cloudflare Pages and integrated with Microsoft Clarity for analytics and Clerk for secure registration and authentication.
Registered in Brazil under CNPJ 57.793.041/0001-08, Sherlockeye provides OSINT (Open Source Intelligence) solutions focused on the collection and analysis of public data associated with digital identifiers such as usernames, emails, and phone numbers. Our services are intended for professionals and institutions engaged in lawful digital analysis, including public safety agencies, verified journalists, and cyber intelligence specialists.
Sherlockeye collects only the data strictly necessary for account management, service provision, and platform enhancement. This includes registered email addresses and service usage metrics, such as the number of API queries. Searches are performed in real-time, querying public sources. Sherlockeye does not collect or log specific search targets' data beyond what is linked and encrypted in the user's account.
All search queries and their results are stored in encrypted format for a maximum of 30 days. Sherlockeye does not log or identify investigated subjects. Users are responsible for saving their results locally, as stored information is not updated automatically. A new search must be performed to obtain updated data.
Sherlockeye uses Cloudflare (for infrastructure), Microsoft Clarity (for anonymous analytics), and Clerk (for secure user authentication). Each provider maintains its own privacy policy. Users are encouraged to review these third-party policies to understand how their data is processed.
Users must consider legal and ethical standards applicable in their jurisdictions when using the platform. Sherlockeye does not take responsibility for how the data is used. It is the user's duty to ensure their use complies with all applicable laws and guidelines.
Sherlockeye implements industry-standard security measures to protect personal data from unauthorized access or misuse. Users are also advised to securely manage their API tokens and login credentials.
We collect: (i) contact data such as email for account management and support; (ii) service usage data, like API queries; (iii) anonymous data from Cloudflare and Microsoft Clarity; (iv) authentication data via Clerk, including login credentials and tokens. In cases involving personal or sensitive identifiers, users must obtain appropriate authorization and comply with privacy best practices.
Collected information is used to maintain and improve our services, communicate updates, resolve issues, and ensure legal compliance. We do not share personal data unless: (i) required by law; (ii) with user consent; (iii) with operational partners under confidentiality agreements; (iv) during corporate restructuring events such as mergers or acquisitions.
Only essential data is retained for service provision and account management. Sherlockeye complies with global data protection standards, including the Brazilian LGPD and the European GDPR, ensuring that all data collection and processing is based on consent and necessity.
This policy may be updated to reflect changes in legal requirements or operational practices. Users will be notified of material changes. We recommend regular review of this policy to stay informed.
For questions, concerns, or to exercise your data rights, contact our Data Protection Officer (DPO): DPO Sherlockeye Av. Cel Lucas de Oliveira, 810, Bairro PetrĂ³polis, Porto Alegre, Rio Grande do Sul, Brasil CEP 90440-010 E-mail: contact@sherlockeye.io
Thank you for trusting Sherlockeye. We are dedicated to delivering reliable and secure OSINT tools with transparency, ethical responsibility, and full respect for your privacy.