← Back to DataPhantom

Privacy Policy

Last updated: 25 February 2026

1. Introduction

DataPhantom (“we”, “us”) respects your privacy. This Privacy Policy explains how we collect, use, and protect information when you use our Chrome extension, website, and related services (the “Service”). The Service is a browser-based web scraper with AI capabilities, designed for individuals and small businesses. By using the Service, you agree to the practices described here.

2. Information We Collect

We may collect the following:

• Account information: When you sign up or sign in (e.g. via Google or email), we store identifiers such as your email address and, if you use Google, your Google account ID. We may store a hashed password if you set one.
• Usage and subscription: We store information necessary to provide the Service, such as your plan (e.g. trial, subscription), subscription status, credit or usage metrics, and billing-related identifiers (e.g. Stripe customer ID) if you subscribe.
• Extension and scraping activity: The extension only accesses the content of web pages when you actively use it (e.g. when you run a scrape on a tab). Data you select and scrape is processed in your browser and, when you export or use AI features, may be sent to our servers or third-party AI providers only as needed to fulfil the action (e.g. to run AI extraction or record usage). We do not routinely store the full content of the pages you scrape for longer than necessary to complete the operation.
• AI-related data: When you use AI-assisted features, we may send limited data (e.g. selected page content or structure) to our systems or to third-party AI providers to generate results. That data is processed according to our agreements with those providers and this policy.
• Technical and logs: We may log requests to our API (e.g. IP address, request type, timestamp, user agent) for operation, security, and troubleshooting. Our servers may store minimal logs for a limited time.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service (including AI and scraping features)
• Authenticate you and manage your account and subscription
• Process payments and comply with legal and tax obligations
• Communicate with you about the Service (e.g. important notices, password reset)
• Detect and prevent abuse, fraud, and security issues
• Comply with applicable law and enforce our Terms of Service

4. Browser Extension Permissions

Our Chrome extension may request permissions such as access to specific tabs or pages, storage, and (if you sign in) identity. We use these only to provide scraping and AI features. We do not use permissions to read or transmit your browsing activity beyond what is necessary when you explicitly run a scrape or use an AI feature. You can uninstall the extension or restrict its access at any time via your browser settings.

5. Third-Party Services

We use third-party services that may process your data:

• Google: For sign-in (OAuth). Google’s privacy policy applies to that sign-in flow.
• Stripe: For payment processing. Payment details are handled by Stripe; we do not store full card numbers. Stripe’s privacy policy applies to payment data.
• AI providers: Where we use third-party AI services for extraction or other features, we may send limited data (e.g. selected page content) to those providers. Their processing is governed by our agreements with them and applicable data protection requirements.
• Hosting and infrastructure: Our servers and databases may be hosted by third parties (e.g. Supabase, cloud providers). Those providers process data on our instructions for hosting and operation.

We do not sell your personal information to third parties for their marketing.

6. Data Retention

We retain account and subscription data for as long as your account is active and as needed to provide the Service and comply with legal obligations. Scraped or AI-processed content is not retained longer than necessary to complete the operation unless we are required to do so by law. Logs and temporary data may be retained for a limited period. You may request deletion of your account and associated data subject to applicable law and our retention requirements.

7. Security

We use reasonable technical and organisational measures to protect your data (e.g. encryption in transit, secure storage, access controls). No system is completely secure; you use the Service at your own risk.

8. Your Rights

Depending on your location, you may have rights to access, correct, delete, or port your personal data, or to object to or restrict processing. To exercise these rights, contact us using the details below. You may also have the right to lodge a complaint with a supervisory authority.

9. Children

The Service is not directed at children under 16. We do not knowingly collect personal information from children under 16. If you believe we have collected such information, please contact us so we can delete it.

10. International Transfer

Your data may be processed in countries other than your own (e.g. where our servers or third-party providers are located). We take steps to ensure that such processing is subject to appropriate safeguards where required by law.

11. Changes

We may update this Privacy Policy from time to time. We will post the updated policy on this page and update the “Last updated” date. Your continued use of the Service after changes constitutes acceptance of the revised policy.

12. Contact

For privacy-related questions or requests (including access, correction, or deletion), contact us at the support or contact details provided on the DataPhantom website or in the extension.