Terms of Service (Last updated: July 24, 2025)

• Operator: Alexandre Vandamme, Sole proprietorship
• Address: 24 rue Henri Matisse, 59150 Wattrelos, France
• SIREN 951 723 667 - VAT not applicable (art. 293 B CGI)
• Email: [email protected]
• Host: OVH, 2 rue Kellermann, 59100 Roubaix, France

French law applies. Disputes fall under the courts of Lille, France.

The Service lets subscribers search publicly available breach datasets (≤ 6 billion URL:user:pass combos) to detect compromised credentials. No banking or medical data is stored.

You confirm you have a lawful basis to query data that may relate to third parties. Unlawful use will lead to immediate account termination and may be reported to competent authorities.

Queries for .gouv, .edu and similar domains require manual validation. Access is denied from territories subject to EU, UN or OFAC sanctions, plus Russia, Iran and North Korea.

Plans are prepaid via Stripe or NOWPayments and renew monthly. Content becomes accessible right after payment. By ticking the consent box on the payment page you expressly waive your 14-day withdrawal right under art. L221-28-13 of the French Consumer Code.

You may cancel at any time via Settings > Billings & Plans > Manage Billing. This opens the Stripe portal where you can manage your subscription. Service remains active until the current period expires. No refunds are issued for unused days.

The statutory guarantee of conformity for digital services (art. L224-25-12 ff.) applies.

Works on all modern desktop and mobile browsers. CSV export is available from the UI; JSON is returned by the REST API. Volumes and rate limits depend on the selected plan.

Functional cookies (twk_uuid_, TawkConnectionTime) and analytics cookies (_ga, _gcl_au, campaign_code) expire after 30 days. Consent can be refused as easily as granted, per CNIL Recommendation 2020-092.

Publishing or sharing complete credentials retrieved through the Service is forbidden. Reports may be used only for lawful internal cybersecurity purposes.

The Service is provided "as is". LeakRadar's total liability will not exceed the fees paid during the previous twelve months.

Registration is reserved for users aged 18 or above.

Illegal-content notices (DSA art. 16) and authority requests (DSA art. 11) must be sent to [email protected]. They are processed within five business days.

Material changes will be announced at least 30 days before they take effect. Continued use equals acceptance.

If any clause is invalid, the remainder of the Terms stays in force.