Last Updated: October 8, 2025

This Privacy Policy describes how Addon Pay, a browser extension monetization service using a subscription-based model (Paywall), and its related services (hereinafter “Services”) collect, process, and use data. We are committed to protecting your privacy and do not sell, rent, or share your personal information with third parties without your consent. Data is processed solely to ensure the functionality of the Services, process payments via Stripe, provide analytics for developers, and improve the user experience.

This policy is intended for developers using Addon Pay to monetize their browser extensions. If you have any questions or concerns, please contact us at: support@addonpay.com. If you do not agree with this Policy, please refrain from using our Services.

Summary of Key Points

What data do we collect? Personal information you voluntarily provide (e.g., name, email, payment details), non-personal data (e.g., technical information, usage statistics), and data collected via cookies for analytical purposes.

Do we process sensitive information? Yes, in anonymized form, such as inferred demographic data (e.g., age range, gender) for analytics.

Do we receive data from third parties? No, except for payment data processed by Stripe.

How do we process your data? To provide the Services, process subscriptions via Stripe, generate developer reports, perform analytics, ensure security, and comply with legal requirements.

Do we share data with third parties? Only payment data with Stripe and anonymized data for analytics, except as required by law.

Do we use cookies? Yes, for analytics, security, and supporting subscription functionality, as detailed in our Cookie Notice.

What are your rights? You can review, update, delete your data, opt out of marketing, or disable cookies.

How to contact us? Email support@addonpay.com.

1. What Data Do We Collect?

Personal Information You Voluntarily Provide

We collect personal information you voluntarily provide when:

• Registering with Addon Pay to monetize your extension via subscriptions.
• Processing payments through Stripe for subscription transactions.
• Interacting with us via customer support, marketing, or surveys.

This information may include:

• Contact details: Name, email address, business contact information.
• Payment data: Information required to process subscription payments (e.g., payment instrument number, security code), which is processed and stored solely by Stripe. See Stripe’s privacy policy: https://stripe.com/privacy
• Developer profile data: Information about your account, monetization settings, and extension usage statistics (e.g., number of active subscribers, payment frequency).

Sensitive Information

We may process inferred demographic data (e.g., age range such as 18–35 years, gender) in anonymized form for analytical purposes, based on your interactions with the Services.

Information Collected Automatically

When you use the Services, we automatically collect:

• Technical data: IP address, browser type, operating system, device identifiers, language settings, HTTP response codes.
• Usage data: Information about interactions with the Services, including visited pages, time and date of interactions, and frequency of subscription feature usage.
• Location data: Approximate location (e.g., country, city) based on IP address.
• Inferred demographic data: Age range and gender for analytics, processed in anonymized form.

Extension Data

For developers using Addon Pay:

• Push notifications: We may request permission to send push notifications for updates related to monetization or your account. You can disable them in settings.
• Subscription and usage data: Statistics about your extension’s activity, such as number of active subscribers and payment frequency, used to generate reports for developers and optimize monetization features.

All information you provide must be true, complete, and accurate, and you should notify us of any changes.

2. How Do We Process Your Data?

We process your data to:

• Provide the Services, including monetization via subscriptions and payment processing through Stripe.
• Generate reports for developers, such as subscriber counts and revenue analytics, to optimize monetization.
• Send account-related notifications, transaction confirmations, or updates.
• Analyze usage to improve performance and enhance the Services.
• Ensure security, prevent fraud, and comply with legal requirements.
• Send marketing communications (with your consent).
• Conduct analytics to understand usage trends and developer needs.

3. What Legal Bases Do We Rely On to Process Your Data?

We process your data based on:

• Consent: For marketing, cookie usage, or analytics processing.
• Contract: To fulfill our obligations under the Services, including processing subscription payments.
• Legitimate interests: To improve the Services, generate analytics, ensure security, and prevent fraud.
• Legal obligations: To comply with court orders or regulatory requirements.
• Vital interests: To protect safety or prevent harm (rare cases).

Per GDPR (Article 6), CCPA, and other laws, we minimize data processing. You can withdraw consent at any time via support@addonpay.com.

4. When and With Whom Do We Share Your Personal Information?

We may share data with:

• Stripe: For processing subscription payments (see their privacy policy: https://stripe.com/privacy).
• Analytics services: Anonymized data for analysis (e.g., Google Analytics or other providers listed in our Cookie Notice).
• Service providers: For hosting, customer support, or other operations, under contracts protecting your data.
• Business transfers: In case of mergers, sales, or other corporate changes.
• Legal requirements: To comply with court orders or regulatory obligations.

We do not sell personal information per CCPA/CPRA. Data transfers outside the EEA, UK, or Switzerland use Standard Contractual Clauses (SCC).

5. Do We Use Cookies and Other Tracking Technologies?

Yes, we use cookies, pixels, and scripts for:

• Ensuring security and core functionality.
• Analytics (e.g., Google Analytics for usage analysis, as detailed in our Cookie Notice).
• Supporting the subscription model (e.g., tracking subscriber activity for developer reports).
• Marketing (with consent).

For a full list of cookies and tracking technologies, see our Cookie Notice.

You can:

• Manage cookies via browser settings.
• Opt out of targeted advertising via http://optout.networkadvertising.org or http://www.aboutads.info/choices/.

Disabling cookies may limit functionality, including subscription management and analytics reporting.

6. How Long Do We Keep Your Data?

We retain data only as long as necessary for the purposes outlined in this Policy or as required by law:

• Payment data: Processed by Stripe and stored per their privacy policy.
• Analytics data: Retained for up to 30 days in anonymized form.
• Technical and usage data: Retained for up to 90 days for troubleshooting and performance optimization.
• Profile and subscription data: Retained until your account is active or you request deletion.

Unneeded data is deleted or anonymized. Backups may be retained longer for technical reasons but are isolated from further processing.

7. How Do We Keep Your Data Secure?

We implement reasonable technical and organizational measures, including:

• Access controls: Restricted access to data for authorized personnel only.
• Security testing: Regular vulnerability assessments and penetration testing.

Despite these measures, no system is 100% secure, and use of the Services is at your own risk.

8. What Are Your Privacy Rights?

Depending on your location (e.g., EEA, UK, US), you have the right to:

• Request access to your data.
• Correct inaccuracies or delete data.
• Restrict or object to processing.
• Request data portability.
• Withdraw consent at any time.

Submit requests to support@addonpay.com. In the EEA or UK, you can contact your local data protection authority. We will respond to requests in accordance with applicable data protection laws.

9. Controls for Do Not Track Features

Most browsers include a Do Not Track (DNT) feature to signal your preference not to have your online activity tracked. Due to the lack of a universal DNT standard, our Services may not fully respond to DNT signals, but disabling cookies in your browser or Service settings will prevent the collection of non-essential analytics data.

10. Do US Residents Have Specific Privacy Rights?

US privacy laws, such as the CCPA, apply to personal data. We do not sell personal information but may share anonymized data for analytics. You have the right to:

• Know what data we process.
• Request access, correction, or deletion of your data.
• Opt out of targeted advertising.

Contact support@addonpay.com to exercise these rights. California residents may request information about data sharing for direct marketing under the “Shine The Light” law (California Civil Code §1798.83) once per year, free of charge.

11. Children’s Privacy

The Services are not intended for children under 13 (or 16 in the EU). We do not knowingly collect data from children. If we receive such data, we will delete it immediately. Contact support@addonpay.com if you believe we have collected data from a child.

12. Do We Make Updates to This Policy?

Yes, we may update this Policy to reflect changes in our practices or legal requirements. Updates will be marked with a new date, and significant changes will be communicated via email or in-Service notifications. We encourage you to review this Policy periodically.

13. How Can You Contact Us About This Policy?

For questions, requests, or complaints, email support@addonpay.com.

14. How Can You Review, Update, or Delete the Data We Collect?

To review, update, or delete your data, submit a request to support@addonpay.com or delete your account via Service settings. We will verify your identity to process requests, using the information provided in your request. If additional verification is needed, we may request further details to ensure security.

15. Data Breach Notification

In the event of a data breach that may compromise your personal information, we will notify affected users within 72 hours, as required by applicable laws (e.g., GDPR, CCPA). Notifications will include details of the breach, its impact, and steps you can take to protect yourself.

16. Disclaimer

We strive to protect your data with reasonable security measures but cannot guarantee absolute security. We are not liable for losses arising from security breaches, technical failures, or user actions, including disabling cookies or other features. Your legal rights under applicable laws remain unaffected.