Privacy Policy for DiscounTrack

Last updated: December 2024

Introduction

DiscounTrack ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our browser extension.

Information We Collect

Personally Identifiable Information

Email Address: We collect your email address to send price drop notifications and verify your account.
API Keys: We store API keys locally to authenticate your requests to our backend services.

Product Information

When you choose to track a product, we collect:

Product title
Product price
Product URL

This information is only collected when you explicitly click "Track This Product" on a product page.

Technical Information

Extension usage data (when you use tracking features)
Browser storage data (your preferences and settings)

How We Use Your Information

Primary Uses

Price Tracking: Monitor product prices you've chosen to track
Email Notifications: Send alerts when prices drop on tracked products
Account Management: Maintain your tracking preferences and account status

Data Processing

Local Storage: Your email, API key, and preferences are stored locally in your browser
Backend Services: Product tracking data is stored securely in AWS DynamoDB
Email Services: Price notifications are sent via secure email services

Data Security

Protection Measures

AWS Security: All backend data is stored in AWS with enterprise-grade security
Encryption: Data is encrypted in transit and at rest
Access Control: Strict access controls and authentication required
Rate Limiting: API requests are rate-limited to prevent abuse

Data Retention

Local Data: Stored in your browser until you clear it
Backend Data: Retained until you untrack products or delete your account
Email Data: Verification codes expire automatically after 5 minutes

Data Sharing

We Do Not Share

Your personal information with third parties
Your tracking data with advertisers
Your email address with marketing companies
Any data for purposes other than price tracking

Required Sharing

Email Service: Price notifications are sent via secure email providers
AWS Services: Data is processed through AWS services (DynamoDB, Lambda, etc.)

Your Rights

Access and Control

View Your Data: You can see all tracked products in the extension
Delete Data: Untrack products anytime through the extension
Clear Storage: Clear all local data by removing the extension
Email Preferences: Unsubscribe from notifications anytime

Data Portability

Export your tracked products list
Download your data in a readable format

Children's Privacy

We do not knowingly collect personal information from children under 13. If you are a parent and believe your child has provided us with personal information, please contact us.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

Posting the new Privacy Policy in the extension
Updating the "Last updated" date
Notifying users of significant changes

Contact Information

If you have questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@discountrack.com
Extension Support: Use the feedback option in the extension

Legal Basis

This Privacy Policy is based on:

Consent: You choose to use our extension and provide information
Legitimate Interest: Providing price tracking services
Contract: Terms of service for using our extension

Data Protection Rights

You have the right to:

Access: Request copies of your personal data
Rectification: Request correction of inaccurate data
Erasure: Request deletion of your data
Portability: Request transfer of your data
Objection: Object to processing of your data
Restriction: Request restriction of processing

International Transfers

Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place for international data transfers.

Cookies and Tracking

We do not use cookies or tracking technologies. All data is stored locally in your browser or in our secure backend services.

Third-Party Services

We use the following third-party services:

AWS: For backend infrastructure and data storage
Email Services: For sending price notifications
Chrome Extension APIs: For browser integration

These services have their own privacy policies and security measures.

Data Breach Procedures

In the event of a data breach, we will:

Notify affected users within 72 hours
Investigate the cause and implement fixes
Report to relevant authorities if required
Provide guidance on protecting your data

Compliance

This Privacy Policy complies with:

GDPR: European data protection regulations
CCPA: California Consumer Privacy Act
Chrome Web Store: Extension privacy requirements