Last updated: February 2026
1. Overview
iMalware is committed to protecting your privacy. This Privacy Policy explains what data we collect, how we use it, and your rights regarding your information. Our core principle is simple: your files never leave your device.
2. Data We Do Not Collect
We do not collect, transmit, or store the contents of any file you scan. All file processing, including MD5 hash computation, occurs entirely within your web browser. The file you select for scanning is read locally by JavaScript and never uploaded to any server.
3. Data We May Collect
When you use iMalware, the following data may be collected:
Hash Lookups: When a file is scanned, the computed MD5 hash prefix (first 3 characters) is sent to our servers to retrieve the relevant portion of our malware database. We may log these requests for operational purposes (rate limiting, abuse prevention). These logs do not contain your full file hash or any personally identifiable information.
Server Logs: Like most websites, our servers may automatically log standard request data such as IP addresses, browser type, referring pages, and timestamps. These logs are used solely for security monitoring, performance analysis, and abuse prevention.
Analytics: We may use privacy-respecting analytics tools to understand aggregate usage patterns (e.g., page views, visitor counts). We do not use tracking pixels, fingerprinting, or cross-site tracking technologies.
4. Cookies
iMalware does not use cookies for tracking or advertising. We may use strictly necessary cookies for basic website functionality if required in the future. We do not use third-party advertising cookies.
5. Third-Party Services
We do not sell, rent, or share your personal data with third parties for marketing purposes. We may use third-party infrastructure providers (hosting, CDN) to deliver the Service. These providers may process server logs as part of normal operations and are bound by their own privacy policies.
6. Data Retention
Server logs and analytics data are retained for a maximum of 90 days, after which they are permanently deleted. We do not maintain long-term databases of user activity or scan history.
7. Security
We implement industry-standard security measures to protect the limited data we handle, including encrypted connections (HTTPS), access controls, and regular security reviews. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.
8. Children's Privacy
iMalware does not knowingly collect personal information from children under 13 (or the applicable age of consent in your jurisdiction). If we become aware that we have collected such information, we will take steps to delete it promptly.
9. Your Rights
Depending on your jurisdiction, you may have the right to access, correct, delete, or port your personal data, as well as the right to restrict or object to certain processing. Since we collect minimal personal data, these rights are inherently supported by our architecture. If you have any requests or concerns, please contact us at privacy@imalware.com.
10. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of the Service after changes constitutes acceptance of the revised policy.
11. Contact
For privacy-related questions or requests, contact us at privacy@imalware.com.