Privacy Policy

Last updated: February 16, 2026

What we collect

When you use whoami.fyi, here's exactly what happens with your data:

• Name and qualifiers you enter — Your name, location, title, and company are used to construct a Google search query. They are not stored after the request completes.
• Google search — We search Google for your name using Serper.dev, a Google search API. This is the same search a recruiter would run. The results are returned to your browser for you to tag (which are you, which aren't). Search results are not stored.
• Handles you enter — Your GitHub username, Bluesky handle, and/or personal site URL are sent to our server to fetch your public data. They are not stored after the request completes.
• Public data fetched — We retrieve your public profile information and recent activity from GitHub and Bluesky using their official public APIs, and your personal site's metadata via a standard HTTP request. This is the same data anyone can see by visiting your profiles.
• Your disambiguation tags — When you tag Google results as "me," "not me," or "not me but close," those tags are sent along with your checkout to inform the AI analysis. They are not stored independently.
• AI analysis — The fetched data is sent to Anthropic's Claude API for analysis. Anthropic processes this data according to their privacy policy. Anthropic does not use API inputs for model training.
• Results — The analysis is returned to your browser. We do not store it.

What we don't collect

• No accounts or passwords
• No analysis results stored
• No cookies (except analytics, if enabled)
• No private data — only publicly available information
• No selling or sharing of data with third parties

Data flow

Your name and handles travel this path:

• Your browser → Our server (Netlify Functions)
• Our server → Serper.dev / Google Search API (search results for your name)
• Our server → GitHub API and/or Bluesky API (public profile data)
• Our server → Your personal site URL (metadata extraction)
• Our server → Anthropic Claude API (analysis, paid tier only)
• Our server → Your browser (results)

After the response is sent, no data is retained on our server. There is no database.

Third-party services

• Serper.dev — We search Google for the name you provide using Serper.dev's search API. This is a standard web search, equivalent to typing your name into Google. See Serper.dev's privacy policy.
• Anthropic — Processes your public profile data and search results for analysis (paid tier only). See their privacy policy.
• Stripe — Processes payments for paid audits. We send your name, handles, and disambiguation tags to Stripe as session metadata so we can run your analysis after payment. No payment card details touch our server — Stripe handles all payment processing. See their privacy policy.
• Netlify — Hosts the site and serverless functions. See their privacy policy.
• Google Analytics — We may use anonymized analytics to understand page views and usage patterns. No personal data is collected through analytics.

Rate limiting

We use in-memory rate limiting based on a hash of your IP address to prevent abuse. The IP hash is not stored persistently and is cleared when the server restarts.

Your rights

Since we don't store any personal data, there is nothing to delete, export, or correct. Each analysis is ephemeral — process and discard.

Contact

Questions about this policy? Get in touch.