Legal

OSINT Disclaimer

Last updated: March 2026

We Only Use Publicly Available Information

TraceMyData is an open-source intelligence (OSINT) service. Every piece of information in your report comes exclusively from publicly accessible sourceswebsites, search engines, social media profiles, and public databases. We do not access, breach, or circumvent any private system, account, or database.

What Is OSINT?

Open-Source Intelligence (OSINT) refers to the collection and analysis of information gathered from publicly available sources. This includes search engines (Google, Bing), social media platforms, public records, news articles, forums, and other websites accessible to anyone with an internet connection. OSINT is a widely used and entirely legal methodology used by journalists, security researchers, law enforcement, and privacy professionals worldwide.

What We Do Not Do

TraceMyData strictly limits itself to passive, public information gathering. We do not:

  • Hack, breach, or unauthorised access any system, account, or database
  • Attempt to bypass login pages, authentication systems, or security controls
  • Access private messages, emails, or non-public social media content
  • Use spyware, malware, or any intrusive software
  • Intercept communications or data in transit
  • Use deception, social engineering, or impersonation to obtain information
  • Access information behind a paywall or subscription without authorisation
  • Conduct surveillance or physical monitoring of any kind

What We Do

  • Search publicly indexed web pages via search engines
  • Review publicly visible social media profiles and posts
  • Check publicly accessible people-finder and directory websites
  • Look up known data breach databases for email addresses
  • Search public username databases and forums
  • Review any other information openly accessible without authentication

Legal Basis

Accessing and reviewing publicly available information is entirely lawful in the United Kingdom and the vast majority of jurisdictions worldwide. We operate in compliance with UK law, including the Computer Misuse Act 1990, the Data Protection Act 2018, and UK GDPR. We do not conduct any activity that would constitute an offence under the Computer Misuse Act or any other legislation.

Self-Service Only

Our service is strictly self-service. Every customer must confirm at the time of ordering that they are requesting a search on their own information. We will not knowingly carry out a search on a third party. Any order found to be made with the intent of investigating another individual without consent will be cancelled immediately and reported to relevant authorities where appropriate.

Report Accuracy

Our reports reflect publicly visible information at the time of the search. We make no claim that results are exhaustive or complete. The internet is vast and not all content is indexed or discoverable. TraceMyData is not liable for information that was not publicly visible or discoverable at the time of the search.