UUnlisted

Privacy Policy

Last updated: March 23, 2026

The short version

We collect the minimum information needed to find and remove you from data broker sites. We don't sell it, share it with advertisers, or use it for anything else. You can delete everything at any time.

That's the whole policy. The rest of this page is the details.

Who we are

Unlisted is operated by an individual in the United States. We're not a corporation. There's no board, no investors, no incentive to monetize your data. The service is at iamunlisted.com.

Questions or concerns: [email protected]

What we collect

When you use Unlisted, we collect:

  • First name and last name
  • Email address
  • Phone number
  • City and state
  • Age
  • Also-known-as names (optional — only if you provide them)
  • Referral link — if you were referred by another user, we store that referral link so we can credit them

That's it. No street address. No Social Security number. No government ID.

What we store

In addition to the information above, we store:

  • Scan results — which data broker sites had your information
  • Screenshots of broker listings (before and after removal)
  • Opt-out and deletion request records

We do not store your payment information. Stripe handles all payment processing and we never see your card number.

How we use your data

One purpose: finding and removing your personal information from data broker sites.

Specifically, we use your data to:

  • Search data broker sites for your listings
  • Submit opt-out requests and legal deletion demands on your behalf
  • Take screenshots to prove what we found and that it was removed
  • Send you emails about your scan results, removal status, and account
  • Re-scan monthly if you have an annual or household subscription

We do not use your data for advertising, analytics, profiling, or any other purpose. We do not sell your data. We do not share it with marketers. Doing so would make us the exact thing we exist to fight.

Third-party services

We use a small number of services to run Unlisted:

  • Stripe— Payment processing. Stripe handles your card information directly. We never see or store your card number. See Stripe's privacy policy.
  • Resend— Email delivery. We use Resend to send you scan results, removal confirmations, and account emails. See Resend's privacy policy.
  • Cloudflare R2— Screenshot storage. Broker listing screenshots are stored in Cloudflare R2. Links expire after 7 days.
  • Neon— Database hosting. Your account data and scan records are stored in a Neon PostgreSQL database.

These companies are service providers (data processors) acting on our behalf — not independent controllers. They only process your data as needed to provide their service to us, under their respective privacy policies and our agreements with them. They do not have access to use your data for their own purposes.

Cookies and tracking

We set one cookie: your login session. That's it.

No tracking pixels. No analytics scripts. No third-party cookies. No fingerprinting. We don't track what pages you visit, how long you stay, or where you came from.

Data retention

We keep your data for as long as you have an account. If you have an active subscription, we need your information to keep scanning and removing you.

If you cancel or your subscription expires, your data stays in your account so you can see your history or resubscribe. We don't delete it automatically.

When you want it gone, it's gone. See below.

Deleting your data

You can delete your account at any time at iamunlisted.com/delete. This permanently removes:

  • Your personal information (name, email, phone, city, state, age)
  • All scan results and removal records
  • All screenshots from cloud storage
  • Your Stripe subscription (cancelled immediately)

This is immediate and irreversible. We don't keep backups of deleted accounts.

Children's privacy

You must be 13 or older to create an Unlisted account. We do not knowingly collect personal information from children under 13 as primary account holders.

Our household plan allows parents to add children (including children under 13) to their account. In that case, the parent manages all data for the child — children do not create their own accounts. The parent's payment for the household plan serves as verifiable parental consent under COPPA for the collection and use of their child's information for data broker removal.

For children under 13, we cite COPPA (Children's Online Privacy Protection Act) in every deletion demand we send to data brokers. COPPA violations carry penalties starting at $50,000, which means brokers take these requests seriously.

Data breach notification

If we experience a data breach affecting your personal information, we will notify you via email within 72 hours of becoming aware of the breach. The notification will include what happened, what data was affected, and what steps we're taking to fix it.

Your rights

Depending on where you live, you may have specific privacy rights under state law (like California's CCPA, Virginia's CDPA, or Colorado's CPA). These typically include the right to:

  • Know what personal data we have about you
  • Request deletion of your data
  • Opt out of the sale of your data (we don't sell it, but the right is yours)

You can exercise all of these by emailing [email protected] or by deleting your account directly.

Changes to this policy

If we change this policy, we'll update the date at the top of this page. For significant changes, we'll email you.

We're not going to bury changes in legalese and hope you don't notice. If something changes, you'll know.

Contact

Questions about this policy or your data: [email protected]