Privacy & Data

Report a breach, check if your email was leaked, request data deletion.

← All free resources

Data breaches happen constantly. Most affected users are never told directly. These tools let you check, report, and act — from finding out whether your email is already circulating to forcing a company to delete everything it holds on you.

Need to send a formal request? Draft a data deletion or GDPR erasure letter with our free letter generator.

Check if your email or password was stolen in a data breach

Have I Been Pwned haveibeenpwned.com →

What: Free database by security researcher Troy Hunt. Enter your email or phone number to see if it appeared in any known data breach from major companies.

When to use: After receiving a suspicious login email, or every 6 months as a routine check. If your email appears, change the password for that service immediately.

Want to know more? Read our full guide →

Remove your personal information from Google search results

What: Official free Google tool that monitors whether your phone number, home address or email appears in search results and lets you request removal directly.

When to use: If you search your own name and find your mobile number or address publicly visible in results.

Want to know more? Read our full guide →

Report a GDPR data protection violation in the UK

ICO — Information Commissioner's Office ico.org.uk/make-a-complaint →

What: The UK's data protection regulator. Accepts complaints about GDPR violations, unlawful data processing, and companies that ignore data deletion requests.

When to use: When a company has mishandled your data, refused a deletion request under your right to erasure, or failed to notify you of a breach.

Want to know more? Read our full guide →

Report a privacy violation to the US federal regulator

FTC Privacy Complaints reportfraud.ftc.gov →

What: The FTC handles complaints about companies that violate US privacy laws, including unauthorized data sharing and deceptive data practices.

When to use: When a US company has misused your personal data or violated its own stated privacy policy.

Want to know more? Read our full guide →

Request any company to delete all your personal data (GDPR)

What: Under UK/EU GDPR, any company must delete all personal data they hold about you within 30 days of a written request. Under CCPA, California residents have the same right.

When to use: To remove your data from any company's database. Send a written request to their Data Protection Officer stating "I am exercising my right to erasure under Article 17 of the UK GDPR."

Want to know more? Read our full guide →