IP LookupBlogAboutContactPrivacy

Privacy Policy

Effective Date: January 1, 2025 · Last Updated: April 28, 2025

Summary: We collect your IP address to show you its geolocation data. We use Google Analytics and Google AdSense (when enabled). We do not sell your personal data. You have rights under GDPR and CCPA.

1. Introduction

WhatIsMyIP Tool ("we," "our," or "us") operates the website at whatismyip-tool.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website. By using our Service, you agree to the collection and use of information in accordance with this policy.

We are committed to protecting your privacy and handling your data in an open, transparent manner. This policy complies with the European Union's General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws.

2. Information We Collect

2.1 IP Address Data (Core Service)

When you visit our website, we automatically receive your IP address. This is the fundamental data required to provide our service — showing you your own IP address information. Your IP address is processed in real-time by our third-party geolocation provider (ipapi.co) and is not stored in our databases beyond standard server log retention periods (7 days), after which logs are automatically purged.

The geolocation data derived from your IP address includes: city, region/state, country, ZIP/postal code, Internet Service Provider (ISP), autonomous system number (ASN), timezone, approximate latitude/longitude coordinates, and connection type. This data is displayed to you on-screen and is not retained by us after your session ends.

2.2 Information You Provide

We collect information you voluntarily provide when you:

  • Submit our contact form (name, email address, message content)
  • Look up a specific IP address using our lookup tool

Contact form data is used solely to respond to your inquiry and is not shared with third parties except as required by law.

2.3 Automatically Collected Information

When you visit our website, certain information is automatically collected by our systems:

  • Log data: IP address, browser type, operating system, referring URLs, pages visited, date and time of visit, and session duration. Log data is retained for 7 days and then permanently deleted.
  • Cookies: We use strictly necessary cookies (for theme preference, cookie consent status) and, if you accept, optional analytics and advertising cookies. See Section 5 for full cookie details.
  • Local Storage: We store your theme preference (dark/light mode) and anonymized recent IP lookup history in your browser's localStorage. This data never leaves your device and is under your full control.

2.4 Third-Party Data Collection

The following third parties may collect data when you use our Service:

  • ipapi.co — our IP geolocation API provider. Your IP address is sent to their servers to retrieve geolocation data. See their privacy policy.
  • OpenStreetMap / Leaflet.js — the mapping service may collect tile request data. See OSM privacy policy.
  • Google Analytics (if cookies accepted) — collects anonymized usage statistics. We have enabled IP anonymization.
  • Google AdSense (if cookies accepted) — may collect data to serve personalized advertisements. See Google's privacy policy.
  • Google Fonts — loads Inter and JetBrains Mono typefaces from Google's CDN. Google may log your IP address when serving these files.

3. How We Use Your Information

We use collected information for the following purposes:

  • Providing the Service: Detecting and displaying your IP address, geolocation data, ISP information, and connection type
  • IP Lookup: Processing IP address lookup requests for addresses you submit
  • Communication: Responding to contact form submissions and support requests
  • Analytics: Understanding how users interact with our site to improve the user experience (anonymized)
  • Advertising: Displaying relevant advertisements to support the free operation of our service
  • Legal compliance: Meeting legal obligations and protecting our rights
  • Security: Detecting and preventing fraud, abuse, and technical attacks

Legal basis (GDPR): We process your data based on: (a) legitimate interests in providing our IP lookup service; (b) your consent for analytics and advertising cookies; (c) contract performance when responding to your contact inquiries; and (d) legal obligation where applicable.

4. Data Sharing and Disclosure

We do not sell your personal data. We may share information in the following limited circumstances:

  • Service providers: Third parties that help us operate our service (hosting, CDN, analytics) who are bound by data processing agreements
  • Legal requirements: When required by law, court order, or governmental authority
  • Protection of rights: When necessary to protect our legal rights, prevent fraud, or protect user safety
  • Business transfer: In connection with a merger, acquisition, or sale of assets, in which case users will be notified

5. Cookies and Tracking Technologies

5.1 Strictly Necessary Cookies (No Consent Required)

  • wimip_theme — stores your dark/light mode preference (localStorage, never expires)
  • wimip_cookie_consent — records your cookie consent choice (localStorage, expires after 1 year)
  • wimip_recent_lookups — stores anonymized recent IP lookup history locally (localStorage, your device only)

5.2 Analytics Cookies (Require Consent)

If you accept cookies, Google Analytics 4 may set cookies including _ga, _ga_* to distinguish users and track site usage. IP addresses are anonymized before being sent to Google. You can opt out using the Google Analytics Opt-out Browser Add-on.

5.3 Advertising Cookies (Require Consent)

Google AdSense may set cookies to show relevant advertisements. You can manage ad preferences through Google Ads Settings or opt out at aboutads.info.

5.4 Managing Cookies

You can manage cookies through:

  • Our cookie consent banner (appears on first visit)
  • Your browser settings (instructions vary by browser)
  • Third-party opt-out tools mentioned above
  • Clearing your browser's localStorage to remove our stored preferences

6. Your Rights

6.1 GDPR Rights (EU/EEA Residents)

If you are located in the EU or EEA, you have the following rights:

  • Right of access: Request a copy of your personal data
  • Right to rectification: Request correction of inaccurate data
  • Right to erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to data portability: Receive your data in a structured, machine-readable format
  • Right to restriction: Request restriction of processing
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw consent for consent-based processing at any time

To exercise your rights, contact us at privacy@whatismyip-tool.com. We will respond within 30 days.

6.2 CCPA Rights (California Residents)

California residents have the right to:

  • Know what personal information we collect, use, disclose, and sell
  • Delete personal information we have collected (subject to certain exceptions)
  • Opt out of the sale of personal information (we do not sell your data)
  • Non-discrimination for exercising your privacy rights

California residents may submit requests by emailing privacy@whatismyip-tool.com.

7. Data Retention

  • Server logs: 7 days, then automatically deleted
  • Contact form submissions: 12 months after resolution, then deleted
  • Analytics data: Retained per Google Analytics settings (default 26 months)
  • Browser localStorage: Until you clear it or we update our storage schema

8. Data Security

We implement appropriate technical and organizational measures to protect your information, including HTTPS encryption for all data transmission, access controls limiting data access to authorized personnel, and regular security reviews. However, no method of transmission over the internet or electronic storage is 100% secure.

9. Children's Privacy

Our Service is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States. When we transfer data from the EU/EEA, we use appropriate safeguards including Standard Contractual Clauses approved by the European Commission.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes by updating the "Last Updated" date and, for material changes, by posting a prominent notice on our website. We encourage you to review this policy periodically.

12. Contact & Data Controller

For privacy-related questions, requests, or complaints:

EU residents may also lodge complaints with their local Data Protection Authority (DPA). To find your local DPA, visit edpb.europa.eu.