WillTheyCheck

Privacy policy

Last updated: April 2026

WillTheyCheck (“we”, “us”, “our”) operates the website willtheycheck.com. This page explains what data we collect, why we collect it, and how we handle it.

What we collect

We collect as little data as possible. Specifically:

Report submissions: When you submit a report, we store the airline, departure airport, destination airport, travel date, fare class (if provided), time of day (if provided), bag check outcomes, and any optional notes you include. Reports are linked to an anonymous session identifier stored in your browser’s local storage — we do not collect your name, email, IP address, or any personally identifiable information with report submissions.

Analytics: We use Cloudflare Web Analytics, which collects anonymous, aggregated traffic data (page views, country, device type, referrer). Cloudflare Web Analytics does not use cookies, does not track individual users, and does not collect personal data. No data is shared with third-party advertisers.

Local storage: We store an anonymous session token in your browser’s local storage for spam prevention purposes. This token is not linked to any personal information and can be cleared at any time by clearing your browser data.

What we do not collect

We do not collect names, email addresses, phone numbers, payment information, precise location data, IP addresses, or any other personally identifiable information. We do not use cookies. We do not run third-party tracking scripts or advertising trackers.

How we use the data

Report data is aggregated and displayed publicly to help travelers understand carry-on enforcement patterns at different airports and airlines. Individual reports are never displayed with any identifying information.

Data storage and security

Data is stored on servers within the European Union provided by Supabase (PostgreSQL database hosted in Frankfurt, Germany). Data is transmitted over encrypted connections (HTTPS/TLS).

Your rights under GDPR

Since we do not collect personally identifiable information, most GDPR data subject rights (access, rectification, erasure) are not directly applicable — there is no personal data to access, correct, or delete. However, if you believe we hold any data related to you and wish to exercise your rights, please contact us.

Third-party services

We use the following third-party services:

Cloudflare — DNS, security, and anonymous web analytics (cloudflare.com)

Supabase — Database hosting, EU region (supabase.com)

Vercel — Website hosting (vercel.com)

Children

This service is not directed at children under 16. We do not knowingly collect data from children.

Changes to this policy

We may update this policy from time to time. Changes will be posted on this page with an updated date.

Contact

If you have questions about this privacy policy, contact us at info@willtheycheck.com.