This Privacy Policy describes how your personal information is collected, used, and shared when you install or use Responsive Viewer Extension.

When you use the Extension and log in to our platform using Google Login or GitHub Login, we collect your email address and name provided by the respective platform.

We use the information collected solely to identify you within our platform and to provide personalized features and services.

Screenshots uploaded through the Extension are stored on our servers and may be made accessible via a unique link. You may control the visibility of each upload by selecting one of the following access levels: public, password-protected, or shared-password-protected. Passwords associated with uploads are stored in hashed form only. We do not retain or have access to plain-text passwords at any time.

Uploaded content is accessible only to you and, where applicable, to individuals with whom you have shared the link and any required password. Our administrators and developers do not access your uploaded content unless strictly necessary to resolve a technical issue at your request or to comply with a legal obligation. Any such access is logged and limited to what is required to address the matter at hand.

Uploaded content is retained for as long as your account remains active, unless you choose to delete it or configure an automatic deletion interval through your account settings. When content is deleted, whether manually or through an automatic deletion policy, all associated files are permanently removed from our systems.

Activity logs, including records of deletions and account setting changes, are retained for a period of six (6) months from the date of creation and are thereafter automatically purged.

You may request deletion of your account at any time through your account settings. Upon request, your account will be scheduled for deletion after a grace period of thirty (30) days, during which you may cancel the request. After the grace period has elapsed, all account data, including uploaded content, settings, and activity logs, will be permanently and irreversibly removed from our systems. Your email address will be retained for record-keeping and abuse prevention purposes.

We process your personal data on the following legal grounds: (a) your consent, provided when you log in via a third-party authentication provider; (b) the performance of a contract, as necessary to provide the services you have requested; and (c) our legitimate interests, including the security of our platform and the prevention of abuse.

In order to provide our services, your data may be processed by the following third-party service providers: Amazon Web Services (file storage), Stripe (payment processing), and GitHub and Google (authentication). Each processor is contractually obligated to handle your data in accordance with applicable data protection laws. We do not sell your personal information to any third party.

We use strictly functional cookies to maintain your session and to enable access to password-protected uploads. These cookies are httpOnly, expire within twenty-four (24) hours, and are not used for tracking, advertising, or analytics purposes.

Under the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection legislation, you have the following rights with respect to your personal data:

• Access and Portability — You may download a machine-readable copy of your data at any time from your account settings.
• Rectification — You may request correction of inaccurate personal data by contacting us.
• Erasure — You may request deletion of your account and associated data through your account settings.
• Restriction of Processing — You may request that we limit the processing of your personal data under certain circumstances.
• Objection — You may object to the processing of your personal data where we rely on legitimate interests as the legal basis.

To exercise any of these rights, please use the tools provided in your account settings or contact us at the address below. We will respond to all verifiable requests within thirty (30) days.

Your data may be transferred to and processed in countries other than your country of residence, including the United States, where our infrastructure providers operate. Where such transfers occur, we ensure that appropriate safeguards are in place in accordance with applicable data protection laws.

Our services are not directed to individuals under the age of sixteen (16). We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected such data, we will take steps to delete it promptly.

We are committed to ensuring that your information is secure. We have implemented appropriate technical and organizational measures to safeguard and secure the information we collect. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within seventy-two (72) hours and will inform affected users without undue delay.

We may update this privacy policy from time to time in order to reflect changes to our practices or for other operational, legal, or regulatory reasons. We will notify you of material changes by posting the updated policy on this page with a revised date.

For all data protection inquiries, requests to exercise your rights, or complaints regarding our privacy practices, please contact us by e-mail at [email protected]. We will respond to your request within a reasonable timeframe and no later than thirty (30) days from receipt.