Niche Extractor — Privacy Policy
Last updated: 14 September 2025
This Privacy Policy explains how Niche Extractor (“Niche Extractor,” “we,” “us,” or “our”) collects, uses, and protects information in connection with our Chrome extension and website located at https://nicheextractor.com (together, the “Service”). By using the Service, you agree to this Policy.
At‑a‑glance: We collect only what we need to operate and improve the Service. We do not sell personal data. Amazon‑related data is processed locally in your browser during your session; we do not access your Amazon account or browsing history.
Who We Are & Scope
This Policy applies to visitors and registered users of the Service, including Free, FREE*, and Plus users, and to Credits usage as defined in our Terms.
Merchant of Record (Payments). Paid purchases may be processed directly via our integrated gateways or by Paddle.com Market Ltd (“Paddle”) acting as Merchant of Record. Paddle issues invoices, collects applicable taxes, and handles payment disputes per their terms.
Information We Collect
We collect the minimum information necessary for the purposes below. Categories include:
A. Account Data (Free/FREE/Plus).* Name, email, password hash, user role/plan, login timestamps, and profile preferences. For FREE* features, a logged‑in account is required.
B. Billing Data (Plus only). Processed by our payment provider (e.g., Paddle): billing address, VAT/Tax ID, transaction details, last four digits of card (if applicable), and invoice metadata. We do not store full payment card numbers.
C. Usage & Interaction Data. Feature clicks, requests/queries counters, Credits balances and consumption, session duration, crash/error reports, and anti‑abuse signals (e.g., concurrent sessions, device/OS, IP city/country, request frequency) to enforce Fair Use and Account‑Sharing prohibitions.
D. Technical Data. Browser type/version, device type, OS, language, approximate location (derived from IP), referrer/UTM (when applicable), and server logs (timestamps, endpoints, status codes, anonymized identifiers).
E. Support & Feedback Data. Information you voluntarily submit through our Contact Us form or Feedback form, including your name, email address, message content, and any screenshots or files you choose to upload. The Feedback form is available only to logged‑in users and may be linked to your account for troubleshooting, abuse prevention, and security purposes.
F. Optional Communications Data. Preferences for updates, onboarding tips, and product announcements (you can opt out anytime).
Amazon data. We do not collect your Amazon account credentials or browsing history. Search results and product data shown by the extension are pulled from Amazon and processed locally in your browser for the current session.
Why We Collect Your Data (Purposes & Legal Bases)
We process data for the purposes and under the legal bases below:
Provide & secure the Service (create accounts, authenticate, operate core features, apply rate limits, prevent abuse). Legal basis: Contract, Legitimate interests.
Billing & subscriptions (process payments, issue invoices, tax compliance, handle disputes). Legal basis: Contract, Legal obligation.
Improve the Service & analytics (understand usage, fix bugs, optimize performance). Legal basis: Legitimate interests or Consent where required.
Communications & support (respond to messages submitted via our Contact Us or Feedback forms, provide assistance, and resolve technical issues). Legal basis: Contract, Legitimate interests.
Compliance & enforcement (detect policy violations such as account sharing, investigate misuse, enforce Terms). Legal basis: Legitimate interests, Legal obligation where applicable.
Where we rely on consent, you can withdraw it at any time (this won’t affect processing already performed).
Cookies & Similar Technologies
We use cookies and local storage to keep you logged in, store preferences, measure feature usage, and protect the Service.
Strictly necessary: login/session security, CSRF protection.
Functional: preferences and saved states.
Analytics: privacy‑respecting analytics and/or Google Analytics.
You can control cookies in your browser; disabling some may limit functionality. We honor Global Privacy Control (GPC) signals where feasible.
Do We Share Data?
We do not sell or share personal information for cross‑context behavioral advertising.
We may disclose limited data to trusted service providers under contractual confidentiality and security obligations, including:
Payments / Merchant of Record: Paddle (transactions, invoicing, taxes, disputes).
Analytics & telemetry providers: to understand performance and usage using pseudonymous identifiers.
Hosting & security providers: cloud infrastructure, CDN/DDoS protection, monitoring, and logging services.
Support tooling: email delivery and secure storage for messages and files you submit via our forms.
We may also disclose information if required by law, to protect rights and safety, or in connection with a business transfer.
International Transfers
We may process personal data in countries other than your own. Where required, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) for EEA/UK users.
Data Retention
We retain personal data only as long as necessary for the purposes described:
Account data: while your account remains active, with limited retention for security and legal compliance.
Billing records: retained as required by applicable tax and accounting laws (typically 6–10 years).
Support & feedback messages: retained for as long as necessary to resolve your inquiry, maintain security records, or comply with legal obligations.
Analytics data: stored in aggregated or pseudonymous form with limited retention periods.
When data is no longer required, it is anonymized or securely deleted.
Your Rights
Depending on your jurisdiction, you may have the right to:
Access, correct, or delete your personal data.
Object to or restrict certain processing.
Request data portability.
Withdraw consent where processing is based on consent.
Lodge a complaint with a data protection authority.
How to exercise your rights: contact us at support@nicheextractor.com or submit a request via our Contact Us or Feedback forms. We may need to verify your identity.
California/US (CCPA/CPRA). We do not sell or share personal information. You may request access, deletion, and correction of your data.
EEA/UK (GDPR). Our legal bases include contract, legitimate interests, and consent where required. We apply appropriate safeguards for international transfers.
Security
We implement technical and organizational measures appropriate to the risk, including HTTPS encryption, password hashing, access controls, and monitoring. No system is fully secure; please protect your credentials.
Business Transfers
If Niche Extractor is involved in a merger, acquisition, or asset sale, personal data may be transferred as part of that transaction. We will notify users of material changes and honor this Policy unless updated in accordance with Section 12.
Children’s Privacy
The Service is not intended for children under 13 (or higher age as required by local law). We do not knowingly collect personal data from children.
Changes to This Policy
We may update this Privacy Policy from time to time. Updates take effect upon posting with a revised “Last updated” date. Significant changes will be communicated through reasonable means.
Contact & Privacy Requests
For privacy questions or requests, contact us at support@nicheextractor.com or use one of the following forms:
Contact Us (no login required): https://nicheextractor.com/contact-us/ Feedback (login required for technical issues and bug reports): https://nicheextractor.com/feedback/
Appendix — Alignment with Terms
Trials & No Refunds. Privacy practices are independent of billing terms.
Credits. Credits balances and usage are tracked solely to operate features and enforce Fair Use; they have no monetary value.
Anti‑abuse. Device, IP, and session metrics are processed only to protect the Service and enforce account‑sharing prohibitions.