Privacy Policy

01What we collect

We collect the bare minimum needed to run the product. We separate it into three buckets:

Account data

When you create an account, we store your email address, hashed password, and your name. If you sign in with Google or GitHub, we also store the provider's user ID so we can recognize you next time. That's it.

Product data (read locally)

When you visit an affiliate network dashboard or offers page, a content script in the extension reads the product tables that are already visible to you. We pull product name, merchant, commission rate, EPC, trend, and rating. This data lives in chrome.storage.local on your device.

If you're on the free Solo plan, that data never leaves your browser. If you're on Pro, your saved presets and watchlists (not raw product data) are sent encrypted to our servers so they sync across devices.

Usage analytics

We collect anonymous, aggregate usage signals: which screens are visited, error counts, and approximate performance numbers. We do not attach this to your account or identify you. You can disable analytics entirely from Account → Notifications.

02How we use it

We use the data we collect only for these purposes:

• Run the service: scoring, ranking, syncing your presets, sending you the daily Top-Pick digest.
• Operate billing: process subscription payments through our payment provider (see below).
• Communicate: send you transactional emails (receipts, security alerts) and, if you opted in, the weekly digest.
• Improve the product: analyze anonymous, aggregate usage to fix bugs and ship the things you actually use.

We do not sell, rent, or trade your personal information. We do not use your account data to train our own models. We do not share data with advertisers.

When you expand a product row on the web dashboard, we may send the product name (or a search keyword you corrected) to third-party services to generate trend and paid-demand insights — see Third-party services below.

03Where it's stored

Product data, API tokens (your own, not network credentials), and cached scans live on your device in chrome.storage.local. Nothing in that bucket is sent to our servers.

For Pro users, synced data (presets, watchlists, score history) lives in encrypted databases hosted in the EU (Frankfurt, Germany) on AWS infrastructure. Backups are kept for 30 days. We use TLS 1.3 in transit and AES-256 at rest.

04Third-party services

We use a small number of third parties to keep the service running. We don't share more than they need:

• LemonSqueezy — payment processing & merchant of record. When you subscribe you complete payment on their secure hosted checkout; they handle card details and tax/VAT, and we never see your card numbers. We send your email and a reference to your account so we can activate Pro.
• Postmark — transactional emails (receipts, password resets). They receive your email address and the contents of the email being sent.
• Plausible Analytics — privacy-respecting, cookieless analytics. No personal data, no cross-site tracking.
• AWS Frankfurt — hosting for Pro sync. EU region only.
• SerpAPI — Google Trends data for AI momentum insights on the web dashboard. We send product names (or search keywords you corrected) as search queries. We do not send your email, user ID, or scan identifiers.
• SearchAPI.io — public ad and product data (the Meta Ad Library, for a paid-demand signal — how many advertisers run ads for a product). We send product names (or search keywords you corrected) as search queries. We do not send your email, user ID, or scan identifiers.
• OpenAI — generates short English trend insights from Google Trends numbers and extension signals (rising/flat, momentum). We send product/keyword names, numeric trend data, and those signals. We do not send user_id, email, or scan_id. Cached insights are stored in our database for up to 30 days; OpenAI retains data per their policy.

05Cookies & local storage

We use first-party cookies to keep you signed in (Supabase session cookies). We do not use tracking cookies, third-party ad cookies, or fingerprinting.

When you are signed in and correct a search keyword on an AI insight ([edit]), we store that correction in an optional preference cookie named aff_kw_overrides (90 days, same browser only, not used for tracking).

In your browser, the extension uses chrome.storage.local for product cache and preferences, and localStorage on our marketing pages for theme preference (light/dark).

06Your rights

Wherever you live, you have these rights. We make them one-click where possible:

• Access — see everything we have on you. From Account → Export all data.
• Correction — fix anything wrong from your profile.
• Deletion — one button at Account → Delete account wipes everything within 14 days.
• Portability — the export gives you a clean ZIP of presets, watchlists, and history.
• Object to processing — turn off analytics and emails from Notifications.
• Complain — to your local data-protection authority if you think we've handled things badly.

07Security

Reasonable security is non-negotiable. Passwords are hashed with Argon2id. All traffic is TLS-encrypted. Pro sync data is encrypted at rest. We run quarterly third-party security reviews and respond to vulnerability reports at security@topoffers.ai within 48 hours.

If a breach ever affects your data, we'll tell you within 72 hours of discovery.

08Children

topoffers.ai isn't intended for anyone under 16. We don't knowingly collect data from minors. If you believe we have, write to us at privacy@topoffers.ai and we'll delete it.

09Changes to this policy

If we change anything substantive, we'll email Pro users 30 days before it takes effect and show a banner inside the extension. Cosmetic changes (typos, links) we ship without notice. Old versions of this policy stay available at /privacy/v<date>.

10Contact

Questions, complaints, or curiosity? Email us at privacy@topoffers.ai. We answer within two business days.

Our data controller of record is topoffers.ai Ltd., registered in Tel Aviv, Israel.