Privacy Policy

Last updated: July 20, 2025

Table of Contents

1. Introduction2. Information We Collect3. Information We Do NOT Collect4. How We Use Your Information5. Local Data Storage6. Data Sharing and Disclosure7. Data Security8. Your Rights and Choices9. International Data Transfers10. Children's Privacy11. Changes to Privacy Policy12. Contact Information

1. Introduction

ProfileSpider ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our browser extension and web service.

Key Principle: ProfileSpider is designed with privacy-first architecture. The profile data you extract is stored locally in your browser and never transmitted to our servers.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address: For account identification and communication
  • Name: Provided by third-party authentication services
  • Profile picture: Optional, provided by authentication services
  • Authentication tokens: To maintain your login session

This information is collected through secure third-party authentication providers and is used solely for account management.

2.2 Usage Data

We collect limited, anonymized usage data to improve our service:

  • Credit usage: Number of profile extractions performed
  • Feature usage: Which features are used (lists, exports, etc.)
  • Error logs: Technical errors to improve service reliability
  • Performance metrics: Response times and system performance

Important: We do NOT collect the actual profile data you extract or any personal information about the profiles you capture.

2.3 Technical Data

We automatically collect certain technical information:

  • Browser type and version: For compatibility purposes
  • Operating system: To provide platform-specific support
  • Extension version: To ensure you have the latest features
  • Timestamps: When features are used (not which websites)

3. Information We Do NOT Collect

ProfileSpider is designed to protect your privacy. We explicitly do NOT collect:

  • Extracted profile data: Names, emails, or any profile information you capture
  • Website URLs: Which websites you visit or extract data from
  • Browsing history: Your general web browsing activity
  • Local data: Any data stored in your browser's local storage
  • Personal communications: Emails, messages, or private communications
  • Financial information: Credit card details (handled by Stripe)

4. How We Use Your Information

4.1 Service Provision

  • Authenticate your account and maintain login sessions
  • Track credit usage and subscription status
  • Provide customer support when requested
  • Send important service updates and security notifications

4.2 Service Improvement

  • Analyze usage patterns to improve features
  • Identify and fix technical issues
  • Develop new features based on user needs

4.3 Legal Compliance

  • Comply with applicable laws and regulations
  • Respond to legal requests or court orders
  • Protect our rights and prevent fraud

5. Local Data Storage

5.1 Browser Storage

ProfileSpider stores all extracted profile data locally in your browser using IndexedDB. This data includes:

  • Profile information you extract (names, titles, companies, etc.)
  • Lists you create to organize profiles
  • Notes and tags you add to profiles
  • Extension settings and preferences

5.2 Data Control

You have complete control over your locally stored data:

  • Ownership: You own all extracted data
  • Access: Only you can access this data through your browser
  • Export: You can export your data at any time
  • Deletion: You can delete any or all data at any time

5.3 Data Persistence

Your local data will be lost if you:

  • Clear your browser's storage/cookies
  • Uninstall the browser extension
  • Reset your browser to factory settings
  • Use browser "incognito" mode (data not saved)

Recommendation: Regularly export your data using our download features.

6. Data Sharing and Disclosure

6.1 Third-Party Services

We use the following third-party services that may process your data:

  • Strapi (Backend): Hosts our API and user management
  • Stripe: Processes payments (we don't store payment info)
  • Google Gemini AI: Processes website content for profile extraction
  • Authentication Providers: Third-party providers for secure login

6.2 AI Processing

When you extract profiles, we send website content to Google Gemini AI for processing. This content may include publicly available information from web pages, but:

  • We do not identify which websites you're extracting from
  • The AI service processes content to identify profile information
  • We do not store the website content after processing
  • The extracted profile data is sent only to your browser

6.3 Google Gemini Privacy Protection

Google Gemini AI, which we use for profile extraction, operates under Google's privacy policies that include specific protections for API users:

  • No Training Use: Google does not use data sent to Gemini API for training or improving their AI models
  • No Data Retention: Google does not retain the content sent through the API beyond the processing session
  • Enterprise Privacy: API usage is governed by Google's enterprise privacy terms, not consumer product terms
  • Data Processing Agreement: Our use of Gemini API is covered by Google's Data Processing Agreement for business customers

For more information about Google's AI privacy practices, you can review Google Cloud Privacy Notice and Gemini API Terms of Service.

6.4 No Sale of Data

We do not sell, rent, or trade your personal information to third parties. Your extracted profile data never leaves your browser.

7. Data Security

7.1 Transmission Security

  • All data transmission uses HTTPS encryption
  • API calls are authenticated using secure tokens
  • Authentication is handled by trusted third-party providers

7.2 Storage Security

  • Local data is stored in browser's secure IndexedDB
  • Server data is stored in secure, encrypted databases
  • Access logs are monitored for suspicious activity

8. Your Rights and Choices

8.1 Data Access and Portability

  • View all your account information in your profile
  • Export your locally stored profile data at any time
  • Request a copy of data we store about you

8.2 Data Deletion

  • Delete individual profiles or entire lists locally
  • Clear all local data using extension settings
  • Delete your account and associated server data

8.3 Communication Preferences

  • Opt out of non-essential emails
  • Choose notification preferences
  • Unsubscribe from marketing communications

9. International Data Transfers

Your account data may be processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in accordance with applicable data protection laws.

10. Children's Privacy

ProfileSpider is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13.

11. Changes to Privacy Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or through the service. Your continued use of ProfileSpider after changes constitutes acceptance of the updated policy.

12. Contact Information

If you have questions about this Privacy Policy or our data practices:

  • Email: privacy@profilespider.com
  • Website: https://profilespider.com/contact

Privacy Summary

Bottom Line: ProfileSpider is built with privacy as a core principle. Your extracted profile data stays in your browser, we collect minimal account information, and we never sell your data. You have complete control over your information at all times.