StatusDetector

Privacy

Privacy Policy

Last updated May 2026. Plain-English account of every piece of data we touch, why, and how to opt out.

What we do NOT collect

StatusDetector is designed to be privacy-first. We never collect or store:

  • Social Security numbers or government-issued ID numbers
  • Passport numbers, immigration case numbers, or visa numbers
  • Bank account numbers, routing numbers, or financial credentials
  • Passwords or authentication tokens
  • Full tracking numbers or order numbers
  • Any personally identifiable information you type into the status search

What we do collect

IP addresses (hashed)

When you submit a problem report, we extract your IP address from request headers solely for rate-limiting purposes. The raw IP address is immediately hashed using SHA-256 before any storage. The plaintext IP is never written to our database. The hash cannot be reversed to recover the original IP.

User-agent strings (hashed)

Browser user-agent strings submitted with problem reports are hashed in the same way — SHA-256, stored as a hex digest only, used for duplicate detection.

Problem reports

When you submit a problem report, we store: the service ID, issue type (e.g., “slow”, “login”), and optional free-text details you provide (max 500 characters). Do not include sensitive personal information in the details field.

Website check results

When you use the Website Down Checker, we store the check result (DNS status, HTTP status, latency, SSL result). We store only the hostname — not the full URL path or query string — to prevent inadvertent logging of sensitive parameters.

Status meaning searches

Queries to the Status Meaning Decoder are sanitized: any sequence of 8 or more consecutive digits is redacted before the query is processed or logged. This prevents case numbers, tracking numbers, and similar identifiers from being stored.

Data retention

Problem reports and website check results are retained indefinitely for aggregate analysis unless you contact us to request deletion. Because reports are keyed only by hashed IP and hashed user-agent, we may be unable to locate your specific records.

Third-party services

StatusDetector is hosted on Vercel and uses Supabase for data storage. These providers have their own privacy policies. We do not sell data to third parties.

We use Vercel Analytics for first-party traffic counts (page views and country, no individual user tracking). Vercel’s analytics are cookieless. We use the Supabase Postgres database to store the hashed reports described above.

Advertising (Google AdSense)

StatusDetector displays ads served by Google AdSense. Google and its partners may use cookies and similar technologies to serve ads based on your prior visits to this and other websites. We do not control which ads are shown.

AdSense scripts are not loaded on the embeddable badge pages (/embed/*), so any third-party site that iframes one of our badges never causes its visitors to load Google ad scripts.

If you are in the EEA, UK, or Switzerland, no advertising cookies are set until you grant consent via the cookie banner shown on your first visit. You can change your choice any time using the “Cookie settings” link in the site footer. Without consent, ads will run in non-personalised mode using only the current-page context.

To opt out of personalised ads globally across the web, visit Google’s Ad Settings or Your Online Choices (EU). We send no data to Google’s Topics API and have disabled the FLoC cohort header via our Permissions-Policy.

Cookies and similar technologies

StatusDetector itself sets no first-party cookies. Local storage on your device is used only for your consent choice (so we don’t re-ask on every visit) and for the optional “recent decodes” history on the Status Meaning Decoder.

Google AdSense, when enabled by your consent, may set cookies in the googlesyndication.com and doubleclick.net domains. You can block these in your browser settings, or revoke consent via the footer link.

Your rights (GDPR / CCPA)

Because we store only hashed identifiers and do not link data to your identity, most traditional data-subject rights (access, portability, deletion) cannot be fulfilled in practice. If you have concerns, contact us and we will do our best to assist.

Contact

For privacy questions, email us at support@statusdetector.com.