Privacy Policy

It is OnlineHashCrack's policy to respect your privacy regarding any information we may collect while operating our website. This Privacy Policy applies to www.onlinehashcrack.com (hereinafter, "us", "we", or "www.onlinehashcrack.com"). We respect your privacy and are committed to protecting personally identifiable information you may provide us through the Website. We have adopted this privacy policy ("Privacy Policy") to explain what information may be collected on our Website, how we use this information, the legal bases on which we rely, and under what circumstances we may disclose the information to third parties.

Like most website operators, OnlineHashCrack collects non‑personally‑identifying information of the sort that web browsers and servers typically make available, such as the browser type, language preference, referring site, and the date and time of each visitor request (through Google Analytics and similar products). OnlineHashCrack's purpose in collecting this information is to understand how visitors use its website and to improve the service. We do not publish this information nor do we collect full IP addresses for analytics purposes.

Certain interactions on our website, such as signing up for services, requesting support, or subscribing to newsletters, require visitors to provide personally‑identifying information. The primary type of personally‑identifying information we collect is email addresses. Here is how we handle this information:
- Collection: We collect email addresses to provide users with the requested services, updates and support.
- Usage: Email addresses may be used to communicate with users about our services, including new features, security updates, or promotional offers (unless the user opts‑out).
- Storage: Email addresses are stored securely in our database with AES‑256 encryption at rest.
- Sharing: We do not sell, rent or trade email addresses with third parties. Email addresses may be shared only with service providers acting on our behalf who are bound by confidentiality and security obligations.
- Rights: Users may access, correct, delete or object to the processing of their personal information at any time (see the section How to Exercise Your Privacy Rights below).

The Service also processes non‑personally‑identifying information related to each task (hashes, filenames, timestamps). These data are used solely to run the requested job and are automatically deleted after 6 months for verified accounts and 1 month for non‑verified ones. Users may delete tasks immediately via their dashboard.

We process your personal data on one or more of the following legal bases:

• Contractual necessity (Art. 6 (1)(b)) – processing is required to deliver the password‑recovery or audit service you request.
• Consent (Art. 6 (1)(a)) – for optional communications (e.g. notifications), or when you voluntarily upload data. You may withdraw consent at any time via your dashboard.
• Legitimate interests (Art. 6 (1)(f)) – to secure our platform, prevent fraud and improve the service in ways that do not override your privacy rights.

We employ commercially reasonable measures to protect your Personal Information, including: enforced HTTPS, encryption in transit (TLS 1.3) and AES‑256 encryption at rest for databases and file storage, restricted employee access, periodic penetration testing, and continuous monitoring. Nevertheless, no method of transmission over the Internet or electronic storage is 100 % secure and we cannot guarantee absolute security.

Ads appearing on our website may be delivered by advertising partners that may set cookies. These cookies allow ad servers to recognize your device in order to compile non‑personally‑identifying information. This Privacy Policy covers the use of cookies by OnlineHashCrack and not by any advertisers.

Our Service may contain links to external sites that are not operated by us. If you click on a third‑party link, you will be directed to that site. We strongly advise you to review the Privacy Policy and Terms & Conditions of every site you visit.

OnlineHashCrack discloses potentially personally‑identifying information only to employees and contractors that (i) need to know that information to process it on OnlineHashCrack's behalf, and (ii) are bound by confidentiality obligations. Some recipients may be located outside your jurisdiction; by using the website you consent to such transfers. We will disclose your information only when required by law or when necessary to protect our rights or those of third parties.

If you are a registered user, OnlineHashCrack may occasionally email you about new features, solicit feedback, or keep you up to date with what's going on. You can opt‑out at any time.

We use cookies and similar technologies to improve your experience, deliver personalised content and ads, and analyse traffic. You can manage or refuse cookies via your browser settings or the cookie‑consent banner displayed on first visit. Continuing to browse without changing your settings constitutes consent to our use of cookies, including those by Google Ads. Learn more at Google Privacy & Terms.

We partner with Google Ads. For details on how Google processes data when you consent, please read Google's Privacy & Terms.

If you reside in the EU/EEA, the GDPR grants you the following rights:

• Right of access – obtain a copy of your personal data.
• Right to rectification – correct inaccurate or incomplete data.
• Right to erasure – request deletion of your data under certain conditions.
• Right to restriction – request limited processing while we address a concern.
• Right to data portability – receive your data in a machine‑readable format.
• Right to object – object to processing based on legitimate interests or direct marketing.
• Right to lodge a complaint with a supervisory authority (e.g. CNIL in France).

If you are a California resident, the California Consumer Privacy Act (CCPA) gives you rights regarding your personal information:

• Right to know – request details on personal information collected, used or disclosed in the last 12 months.
• Right to delete – request deletion of personal information.
• Right to opt‑out of sale/share – we do not sell personal information. If this changes we will provide a prominent “Do Not Sell My Personal Information” link.
• Right to non‑discrimination – we will not discriminate for exercising any CCPA right.

We will respond to verified requests within 45 days. You may designate an authorized agent to make requests on your behalf.

To exercise any GDPR or CCPA right, or to withdraw consent, please email us at [email protected].
We will acknowledge receipt within 10 days and respond within the statutory time frame (30 days for GDPR; 45 days for CCPA). For security, we may verify your identity before processing your request.

Although most changes are likely to be minor, OnlineHashCrack may update this Privacy Policy from time to time. We encourage visitors to check this page regularly. Your continued use of this site after any change constitutes acceptance of the revised policy.