Home/Privacy
[ 01 ] — Privacy

What we collect, store, and never touch.

A plain-language account of what happens to data when you use Network Lookup — written to be read, not to obscure.

Last updated: May 31, 2026

Most privacy policies are unreadable on purpose — dense legal language designed to satisfy a requirement, not to inform a reader. This one is written to be understood. If something is unclear, contact us and we'll explain it.

What Network Lookup does

Network Lookup (networklookup.com) provides free network diagnostic and security tools — IP geolocation, DNS records, email authentication, SSL/TLS inspection, and more. Many tools run entirely in your browser. Server-side tools query our own infrastructure and a small number of external sources listed below.

Tools that run entirely in your browser

The following tools process everything locally. Nothing about your input is sent to us:

  • WebRTC Leak Test — uses your browser's RTCPeerConnection API and public STUN servers; nothing leaves your browser.
  • Email Header Analyzer — pastes are parsed in JavaScript locally.
  • Subnet Calculator (CIDR / VLSM) — all arithmetic happens in the browser.
  • Browser Fingerprint — your fingerprint is derived in the browser; we don't transmit or store it.

Tools that use our API

Tools like IP Lookup, WHOIS, ASN Explorer, DNS Records, SPF / DMARC / DKIM checks, IP Blacklist, CAA / DNSSEC, Bulk IP Lookup, and the others send the value you enter (an IP, a domain, a header set) to our server to perform the lookup. We do not keep per-request logs, and we never link a lookup to the visitor who made it. Query responses may be cached at our edge for typically 5–10 minutes to improve performance and reduce load on upstream services. We don't currently run user accounts, and there is no link between a query and a visitor.

One thing we do keep — aggregate, never about you. For the server-side lookup tools (the IP Reputation checker, the /ip/ address pages, and the /asn/ pages), we maintain a running count of which IP addresses, ASNs, and domains get looked up — a total plus a first-seen and a last-seen timestamp per item — so we can understand demand and decide which result pages are worth expanding. These counts are about the item being looked up, not about you: no visitor IP address, no device or browser information, and no per-request log is stored against them. The tools that run entirely in your browser (listed above) send us nothing and are never counted.

IP geolocation

We use MaxMind's GeoLite2 database for IP-to-location and IP-to-ASN lookups. The database is loaded on our own server (a Cloudflare Worker reads it from R2 object storage) — your IP address is not sent to any third party for geolocation.

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Cloudflare

This site is served through Cloudflare's network. Cloudflare may collect standard web server logs — IP address, request URL, user agent, timestamp — as part of operating the service, including DDoS protection and bot mitigation. We don't see individual-visitor records; we only use Cloudflare Web Analytics, which is aggregate, cookieless, and does not fingerprint browsers. Cloudflare's own privacy practices are published at cloudflare.com/privacypolicy.

Google AdSense (advertising)

This site displays advertisements through Google AdSense. Google and its advertising partners (including third-party vendors) may use cookies and similar technologies (such as web beacons or local storage) to serve ads based on your prior visits to this site or other websites. This is sometimes called "interest-based advertising."

You can opt out of personalised advertising by visiting Google's Ads Settings at google.com/settings/ads, or by visiting the Digital Advertising Alliance opt-out page at optout.aboutads.info. EU residents can also use youronlinechoices.eu.

Google's use of advertising cookies enables it and its partners to serve ads to your browser based on your visits to this site and/or other sites on the internet. Google's use of personal information is governed by its own privacy policy: policies.google.com/privacy. Google's advertising-cookie use is described at policies.google.com/technologies/ads.

Google Search Console & analytics

We may use Google Search Console to understand how our pages appear in Google's search results. We do not use Google Analytics. Aggregate traffic shape — which pages are popular, which countries visitors come from — comes from Cloudflare Web Analytics, which does not identify individual users.

Third-party services contacted by tools

When you use a tool, the IP address or domain you enter is sent to the third-party APIs below to retrieve data. These services see the queried value — not your identity, not your visitor IP — because the request is made from our infrastructure, not your browser.

  • Cloudflare DNS-over-HTTPS (cloudflare-dns.com) — DNS queries for SPF, DMARC, DKIM, DNSSEC, CAA, propagation, and the DNS records tool. Cloudflare's 1.1.1.1 resolver does not log query IP addresses, per their stated policy.
  • Google DNS-over-HTTPS (dns.google) — used as the server-side whoami probe for the DNS leak test.
  • crt.sh — Certificate Transparency log search for the CT search tool.
  • Public STUN servers — Google, Cloudflare, and Nextcloud STUN endpoints, contacted directly from your browser by the WebRTC leak test only.
  • Self-hosted web fonts — Instrument Serif, JetBrains Mono, and Inter are served from our own /fonts/ path. No third-party font CDN is contacted.

Cookies

  • First-party cookies: we set no first-party cookies for tracking or personalisation.
  • Google AdSense: may set third-party cookies for ad personalisation and frequency capping (see opt-out links above).
  • Cloudflare: may set technical cookies (cf_clearance, __cfruid) as part of DDoS protection and bot mitigation. These are functional infrastructure cookies and aren't used for advertising or cross-site tracking.

Data retention

  • API query cache: 5–10 minutes at the Cloudflare edge, then auto-expires.
  • Server logs: managed by Cloudflare per their retention policy (typically 30 days for infrastructure logs).
  • Aggregate lookup counts: per queried IP, ASN, or domain — a count plus first-seen and last-seen timestamps, with no visitor data attached. Kept to understand which subjects are in demand.
  • User accounts: none currently — the tools work without a login, and we keep no visitor profiles.

Children's privacy

This site is not directed at children under 13 and we do not knowingly collect personal information from children. If you believe a child has provided personal information, contact us and we will delete it.

Your rights

If you want to know what we know about you: practically nothing. No account today, no per-visitor query history, no profile — the only lookup data we keep is an aggregate count per item looked up, which carries nothing that identifies you (see "Tools that use our API" above). If you're concerned about data Cloudflare or Google hold about your visit, you can contact those providers directly — they're the data processors for infrastructure logs and ad serving respectively.

For any other privacy question or concern, email contact@networklookup.com or use our contact page.

Changes to this policy

We'll update this policy if our data practices change — when new tools or data sources are added, if we introduce user accounts, when advertising or analytics arrangements change, or when legal requirements change. The "last updated" date at the top reflects the most recent revision.