Privacy Policy

Effective Date: August 18, 2025

Contraste Ltd (“we,” “our,” or “us”) operates the Webbye Chrome extension and related services. This Privacy Policy explains how we collect, use, store, and protect your information when you use our services.

1. Information We Collect

Account Information

• Email address: Required for account creation and authentication
• Subscription details: Billing information processed through Stripe
• Account preferences: Settings and configuration data

Usage Information

• Extension activity: Number of extractions, features used, and error logs
• Performance data: Response times and system performance metrics
• Credit usage: Tracking of credit consumption and remaining balance

Technical Information

• Browser data: Chrome version, extension version, and basic system information
• IP address: For security and fraud prevention purposes
• Session data: Temporary data to maintain your login session

Extracted Data

• Website content: Data you choose to extract using our extension
• AI processing: Content sent for AI analysis and transformation
• Export data: Files and formats you generate through our service

2. How We Use Your Information

Service Provision

• Authenticate your account and maintain sessions
• Process data extractions and AI transformations
• Track credit usage and enforce plan limits
• Provide customer support and technical assistance

Service Improvement

• Analyze usage patterns to improve features
• Monitor system performance and reliability
• Develop new features and capabilities
• Identify and fix bugs or security issues

Communication

• Send important service updates and notifications
• Provide billing and subscription information
• Respond to support requests and inquiries
• Share product updates and feature announcements (with consent)

Legal and Security

• Prevent fraud and unauthorized access
• Comply with legal obligations and court orders
• Protect intellectual property rights
• Enforce our Terms of Service

3. Information Sharing

We do not sell, trade, or rent your personal information to third parties. We may share information in the following limited circumstances:

Service Providers

• Supabase: Database hosting and authentication services
• Stripe: Payment processing and subscription management
• Firecrawl: Web scraping infrastructure and data processing
• Cloud providers: Hosting and infrastructure services

Legal Requirements

• Compliance with laws, regulations, or legal processes
• Protection of rights, property, or safety of users or the public
• Investigation of fraud or security incidents
• Business transfers or acquisitions (with notification)

Aggregated Data

We may share anonymized, aggregated usage statistics that cannot identify individual users for research and marketing purposes.

4. Data Storage and Security

Data Location

• User accounts: Stored securely with Supabase
• Extracted data: Temporarily processed and not permanently stored
• Billing data: Securely handled by Stripe (we don’t store payment details)

Security Measures

• Encryption: All data transmitted using TLS/SSL encryption
• Access controls: Limited access to personal data on a need-to-know basis
• Authentication: Secure login systems with session management
• Monitoring: Continuous monitoring for security threats and breaches

Data Retention

• Account data: Retained while your account is active
• Usage data: Aggregated data may be retained for analytics
• Extracted data: Not permanently stored; processed in real-time
• Support communications: Retained for customer service purposes

5. Your Rights and Choices

Account Management

• Access: View and update your account information
• Deletion: Request account deletion (subject to legal obligations)
• Data portability: Export your account data in a structured format
• Correction: Update or correct inaccurate information

Marketing Communications

• Opt-out: Unsubscribe from promotional emails at any time
• Preferences: Manage communication preferences in your account
• Essential communications: Some service-related emails cannot be disabled

Data Protection Rights (GDPR)

If you are in the European Union, you have additional rights:

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure (“right to be forgotten”)
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent

6. Cookies and Tracking

Essential Cookies

• Authentication: Maintain your login session
• Preferences: Store your settings and configurations
• Security: Prevent fraud and unauthorized access

Analytics

We use aggregated analytics to understand how our service is used and to improve performance. This data is anonymized and cannot identify individual users.

Third-Party Services

Our service providers may use their own cookies and tracking technologies, subject to their respective privacy policies.

7. Children’s Privacy

Webbye is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected such information, we will take steps to delete it promptly.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with applicable laws.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will:

• Notify you of material changes via email or service notifications
• Post the updated policy on our website with the effective date
• Provide the option to review and accept significant changes

10. Third-Party Services

Supabase

Our database and authentication provider. Review their privacy policy at: https://supabase.com/privacy

Stripe

Our payment processor. Review their privacy policy at: https://stripe.com/privacy

Firecrawl

Our web scraping infrastructure provider. Data is processed according to their privacy standards.

11. Data Breach Notification

In the event of a data breach that may affect your personal information, we will:

• Investigate and contain the breach promptly
• Notify affected users within 72 hours when feasible
• Provide information about what data was involved
• Explain steps taken to address the breach
• Offer guidance on protective measures you can take

12. Business Transfers

If Contraste Ltd is involved in a merger, acquisition, or sale of assets, your personal information may be transferred. We will provide notice before your personal information becomes subject to a different privacy policy.

13. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Contraste Ltd
Data Protection Officer
Email: support-webbye@contrasteltd.com
Website: https://webbye.com

For GDPR-related requests, please specify “Data Protection Request” in your email subject line.

14. Compliance

This Privacy Policy is designed to comply with:

• General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA)
• Other applicable data protection laws

---

Last updated: August 18, 2025
© 2025 Contraste Ltd. All rights reserved.