Privacy Policy

Effective date: April 17, 2026

FinePrint ("we", "us", "our") is a browser extension that helps you understand the legal documents you encounter online. This policy explains what data we collect, why, and how we protect it.

1. What We Collect

Account information. When you create a FinePrint account, we collect your email address and a hashed password. We never see or store your plaintext password.

Page text for analysis. When FinePrint detects a legal document (e.g., a privacy policy or terms of service) on a page you visit, it sends the text of that document to our server for AI analysis. We do not send any other browsing data, page content, or URLs that are not legal documents.

Analysis history & page URLs. When FinePrint analyzes a legal document, we store the URL of that specific page alongside the AI-generated summary and flagged clauses so you can review them later. We only record the URLs of pages where a legal document was actively analyzed — we do not record your general browsing history or the URLs of pages you visit that do not contain a legal document.

Usage metrics. We store aggregate counts locally in your browser (e.g., number of policies scanned, cookies rejected, estimated time saved) via chrome.storage. These counts are never sent to our servers and are used only to display your personal stats inside the extension.

In-extension interactions. We track user-initiated actions within the extension (e.g., toggling auto opt-out, clicking Upgrade) solely to provide and improve core features. We do not log mouse movements, keystrokes, or activity outside the extension panel.

2. What We Do NOT Collect

• We do not track your general browsing history. We only store the URL of a page when you actively use FinePrint to analyze a legal document on that page.
• We do not read, collect, or transmit any personal data from the pages you visit (passwords, form inputs, emails, etc.).
• We do not inject ads, trackers, or third-party analytics scripts.
• We do not sell, rent, or share your data with third parties for advertising purposes.

3. How We Use Your Data

• AI analysis: Document text is sent to OpenAI's API (GPT-4o-mini) to generate a plain-English summary and flag concerning clauses. OpenAI processes the text under their Enterprise Privacy policy and does not use API inputs for model training.
• Account management: Your email is used for authentication, password resets, and verification codes.
• Product improvement: We may review aggregate, anonymized statistics (e.g., total analyses count) to improve the product. We do not review individual analyses.

4. Third-Party Services

• Supabase (authentication and database) — hosted in the US. Privacy policy.
• OpenAI (AI analysis) — processes document text under API terms. Privacy policy.
• Stripe (payments, Pro plan only) — handles payment information directly; we never see your full card number. Privacy policy.

5. Data Storage and Security

Your data is stored in a Supabase-managed PostgreSQL database with row-level security (RLS) enabled — each user can only access their own data. All data is encrypted in transit (TLS) and at rest.

Local browser data (chrome.storage) is sandboxed by Chrome's extension security model and is not accessible to websites or other extensions.

6. Data Retention

Your analysis history is retained as long as your account exists. You may delete your account at any time by contacting us at fineprintsupport@gmail.com, and all associated data (profile, analyses, and Stripe customer record) will be permanently deleted within 30 days.

7. Cookie Banner Auto-Rejection

FinePrint can automatically click "Reject All" or "Decline" on cookie consent banners. This feature runs entirely in your browser — no data is sent to our servers. You can disable it in Settings > Auto opt-out.

8. Children's Privacy

FinePrint is not intended for children under 13. We do not knowingly collect data from children. If you believe a child has created an account, contact us and we will delete it.

9. Your Rights

Depending on your jurisdiction (GDPR, CCPA, etc.), you may have the right to access, correct, export, or delete your personal data. Contact fineprintsupport@gmail.com and we will respond within 30 days.

10. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via the extension or email. Continued use after changes constitutes acceptance.

11. Contact

Questions or concerns? Email us at fineprintsupport@gmail.com.