Privacy Policy

By accessing or using {{WebsiteName}}, you acknowledge that you have read and understood this Privacy Policy and agree that we may collect and process information about you as described below. If you do not agree, please discontinue use of the Service.

• Service: The {{WebsiteName}} website, browser extension, and related applications.
• Personal Data: Any information that identifies or can be reasonably linked to a specific individual (e.g., email address).
• Usage Data: Information collected automatically through use of the Service (e.g., device, browser type, pages visited, timestamps).
• Cookies: Small files placed on your device to store preferences and other information.
• Data Controller: The party that determines the purposes and means of processing Personal Data ({{WebsiteName}}).
• Data Processor: A third party that processes Personal Data on behalf of the Data Controller (e.g., cloud providers).
• Data Subject: An identified or identifiable individual to whom Personal Data relates.

We collect the following categories of information to operate and improve the Service:

• Account information: email address, name, and profile details you provide (except for password).
• Usage data: pages viewed, features used, referral URLs, IP address, device/browser type, approximate location, timestamps, crash/error logs.
• Payment/subscription data: processed by Stripe; we receive non-sensitive metadata (e.g., plan type, status, last 4 digits via Stripe tokens) and do not store full card numbers.

Our Chrome extension does not collect, transmit, or store any personal data, uploaded files (including PDFs), or notes on our servers. All extension-related data is stored locally on the user's device using the browser's local storage. This data remains private to the user and is not accessible to us or any third party.

We use first- and third-party cookies and similar technologies to enable core functionality and enhance performance:

• Essential: required for login, security, and core features.
• Functional: remember preferences and settings.
• Analytics: help us measure performance and usage (only if consented).
• Third-party: set by integrations such as Google reCAPTCHA and Stripe.

For details and controls, see our Cookie Policy and the “Cookie Settings” link in the footer.

• Provide, operate, and maintain the Service.
• Authenticate users, prevent fraud/abuse, and secure accounts (including reCAPTCHA).
• Process payments and manage subscriptions via Stripe.
• Improve features, performance, and usability.
• Provide customer support and respond to inquiries.
• Analyze aggregated usage to guide roadmap decisions.
• Comply with legal obligations and enforce terms.

• Supabase for authentication, database, and storage (Data Processor).
• Stripe for payment processing and subscription management (independent controller for payment data).
• Google reCAPTCHA for security and fraud prevention.
• Optional analytics tools (if enabled by consent).

• Consent: for non‑essential cookies/analytics and certain communications.
• Contractual necessity: to provide the Service and process subscriptions.
• Legitimate interests: to protect the Service, prevent abuse, improve features.
• Legal compliance: to meet legal and regulatory obligations.

We retain Personal Data for as long as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Usage Data may be retained for a shorter period unless required for security or legal reasons.

Your information may be transferred to and processed on servers located outside of your state, province, or country. Where applicable, we implement safeguards such as Standard Contractual Clauses or equivalent mechanisms.

We may disclose information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency), or to protect our rights, property, users, or the public.

We use reasonable technical and organizational measures to protect Personal Data (e.g., encryption in transit, access controls). However, no method of transmission or storage is 100% secure; we cannot guarantee absolute security.

Our Service does not respond to "Do Not Track" signals at this time. You may control cookies through the “Cookie Settings” link in the footer and your browser settings.

• Access your Personal Data and obtain a copy.
• Correct inaccurate or incomplete data.
• Request deletion of your data.
• Object to or restrict certain processing activities.
• Request data portability.
• Withdraw consent where processing is based on consent.
• Lodge a complaint with a supervisory authority.

The Service is not directed to children under the age required by applicable law (e.g., 13 or 16). We do not knowingly collect Personal Data from children. Parents or guardians who believe a child has provided data may contact us to request deletion.

When you delete your account using the in‑app feature, we delete your user profile and associated Personal Data from our database, subject to limited retention required by law (e.g., tax, fraud prevention) or for enforcing our terms.

We may update this Privacy Policy from time to time. We will post the new effective date and, where material changes occur, provide additional notice as appropriate.

For privacy inquiries, contact {{WebsiteName}} at support@{{website}}.com.