IMEIX

Privacy policy

Last updated: July 15, 2026

IMEIX is built to ask you for as little as possible: no sign-up, no account, and we don't know who you are. Here's exactly what happens to the data we do need.

Who handles your data

The data controller is Javier Marín Bernal, tax ID 77759458T, registered at Camino de Murcia 91, 2E - 30530 Cieza.

For anything about this policy, write to contact@imeix.app.

What we handle

We don't ask for your name, email, phone number or an account. The app works without signing up.

When you install IMEIX, your iPhone generates a random identifier and stores it in the iOS Keychain. Its only job is to remember how many checks you've paid for. It isn't tied to your identity and we don't cross-reference it with anything.

The IMEI you check reaches our server and goes on to the data provider — without it there's no report. It isn't stored in our database. We keep a hashed fingerprint (SHA-256 with a secret key that only exists on the server) and the last few digits, so we can show your history and avoid charging you twice for a check you already paid for. That fingerprint can't be reversed back into the IMEI.

From the report we keep the brand, model, verdict and date. The serial number and the other identifiers the provider returns are discarded before anything is saved.

Your check history lives on your phone, not on our server.

What we use it for

To deliver the service you paid for: run the IMEI check, give you the report, and keep count of your checks. The legal basis is performance of a contract (Article 6.1.b GDPR).

We don't build profiles, we don't show ads, and we don't sell or share your data for commercial purposes.

Who else sees it

Sickw (United States): the service that queries the industry databases. It receives the IMEI, because that's what it looks up.

RevenueCat (United States): handles in-app purchases and tells us you've paid.

Apple: takes the payment. We never see your card or payment details.

Hetzner (Germany): hosts the server. Your data is stored in the European Union.

Transfers to the United States rely on the standard contractual clauses approved by the European Commission.

How long we keep it

The provider's response is cached for 24 hours, so you're not charged twice for the same phone.

Reports and the record of checks are kept while the service exists, so you can reopen a report you paid for, and to meet our tax and accounting obligations.

Cookies

This site uses no tracking cookies, no advertising cookies and no analytics cookies. None. That's why there's no banner.

Fonts are served from our own server: your browser makes no third-party requests.

Your rights

You can request access, rectification, erasure, objection, restriction and portability by writing to contact@imeix.app.

One honest caveat: because we never ask for personal data, we can't tell which of our records are yours from your name or email. To act on your request we need your device's anonymous identifier or the IMEI you checked (Article 11 GDPR). Without one of the two we have no way to find you — and no way to identify you either.

If you think we've handled this badly, you can complain to the Spanish Data Protection Agency (www.aepd.es) or your local supervisory authority.

Children

IMEIX isn't aimed at children under 14 and we don't knowingly collect their data.

Changes

If we change this policy we'll update the date above. If the change matters, we'll tell you inside the app.

Languages

This policy is translated into the app's languages so you can read it in yours. Where a translation says something different from the Spanish version, the Spanish one governs.