Please note: the privacy implications of using PhishDetect are very dependent on the PhishDetect Node you have configured your PhishDetect Browser Extension to use.
When using PhishDetect Browser Extension’s Gmail integration neither the developers of PhishDetect, nor the operators of the configured PhishDetect Node have in any way access to your email account. Neither your account information, nor any information related to emails you send or receive are sent anywhere. Only any link you manually request to have scanned, or when you manually share a suspicious email or link, they are going to be forwarded to the configured PhishDetect Node.
When using the “Scan this link for phishing” option only the link itself is forwarded to the configured PhishDetect Node. It is important to note that the link might contain some personal information (for example phishing pages often include in the link your name, or your email address in an encoded form).
When using the “Scan this page for phishing” option or using the equivalent “Scan this page!” button from the toolbar, the PhishDetect Browser Extension will forward to the configured PhishDetect Node both the URL, the HTML content as well as the screenshot of the opened page. It is important to note that both the URL and especially the HTML content might contain personal and private information. PhishDetect Nodes normally do not store the HTML content of the page nor the screenshot. If you are using a non-default PhishDetect Node, please refer to its operators for confirmation.
When using the “Report to PhishDetect” button inside the supported webmails, the full email will be sent to the configured PhishDetect Node, including email headers and attachments.
When using the “Report this Page” button in the toolbar popup, the link of the opened tab will be sent to the configured PhishDetect Node.
PhishDetect Browser Extension does not perform any automated scan. Only the links and suspicious pages you specifically requested to have verified are sent to the configured PhishDetect Node. No action is performed without your expressed manual consent.
The browser extension uses a default PhishDetect Node located at phishdetect.securitywithoutborders.org, operated by Security Without Borders and the creators of PhishDetect.
We store events related to positive detections of blocked websites, suspicious links and emails manually reported by users. These details are not shared with any third party and they are exclusively stored on a server located in Sweden, hosted by DFRI. We do not store any information on scanned links and pages that were found to be innocuous.