Legal

Privacy Policy

Last updated: 9 July 2026

1. Who is responsible

Amorem, 50 Rue Saint André des Arts, 75006 Paris, France, operates extension.report and is the controller for account, website and billing data. For telemetry that a customer sends from its extension or app, the customer determines the purpose and Amorem generally acts as its processor.

Questions, rights requests and Data Processing Agreement requests can be sent to hello@extension.report.

2. Data we process

  • Account: email, optional name/image, authentication provider, session security data, organization membership and preferences. Passwords are not collected by the magic-link flow.
  • Customer telemetry: random installation identifier, event names and times, extension/app and SDK versions, browser/OS/device context, coarse country/region, optional customer-defined user IDs, traits, custom events, errors and uninstall feedback.
  • Service journey: bounded first-party events such as signup, project creation, setup, Report and billing milestones. These records do not store raw IP or user-agent values.
  • Email: recipient, subject, template, delivery status, opens, clicks, bounce/complaint and unsubscribe events. Request metadata used for tracking is hashed before storage.
  • Billing: Stripe customer/subscription IDs, plan, price, status, period and usage counters. Card details are handled by Stripe and are not stored by extension.report.
  • Security and operations: rate-limit keys, audit records, queue/job health and error logs with secret redaction.

The SDK does not use cookies and does not collect browsing history by default. IP addresses may be used transiently for rate limiting and coarse country lookup, but raw analytics IP addresses are not persisted.

3. Purposes and legal bases

We process data to provide and secure the service, authenticate users, ingest and display customer analytics, enforce plan limits, deliver requested emails, process payments, support customers, prevent abuse and improve activation and reliability. The legal bases are performance of the service contract, our legitimate interests in security and product operation, compliance with legal obligations, and consent where the law requires it.

4. Providers and international transfers

Data may be processed by infrastructure and operational providers used to run the service, including Stripe for billing, UseSend for transactional email, Infisical for secrets, database/cache/hosting providers and optional cookieless Plausible analytics. We share only what the provider needs. Where data leaves the EEA, we rely on an adequacy decision, Standard Contractual Clauses or another lawful safeguard.

5. Retention

  • raw customer analytics and rollups follow the organization's published plan retention (normally 30, 90 or 365 days); a seven-day downgrade grace prevents immediate deletion;
  • email HTML/text bodies are removed after 30 days, delivery events after 400 days, and released suppressions after 90 days; active suppressions remain while needed to protect deliverability;
  • billing, tax and audit records are kept for the period required by applicable law and legitimate security needs;
  • account data is kept while the account is active, then deleted or anonymized subject to legal and backup expiry requirements.

6. Cookies and local storage

We use essential authentication cookies and local storage for preferences such as theme, onboarding state and an anonymous journey identifier. We do not use advertising cookies. If optional analytics changes to require consent, we will request it before activation and update this notice.

7. Your choices and rights

Depending on your location, you may request access, correction, deletion, restriction, portability or objection, withdraw consent, and complain to your data-protection authority (in France, the CNIL). Email preferences and one-click unsubscribe links are available in every recurring email. Customers remain responsible for responding to rights requests concerning the telemetry they control; we assist them under the DPA.

8. Security and changes

We use access controls, signed webhooks, encryption in transit, secret management, tenant authorization, redacted operational snapshots and audit logs. No system is risk-free. Material policy changes will be dated here and, when appropriate, announced in-product or by email.

This notice should be reviewed with qualified counsel for the exact customer mix, subprocessors and international-transfer setup before public launch.