Privacy Policy
We get it. Privacy matters. Here's exactly what we collect, why, and who we share it with. No lawyer speak, no 47-page PDF. Just the real talk.
TL;DR
We collect the bare minimum to make the extension work. We don't sell your data. We don't scrape LinkedIn. We don't store your LinkedIn password. If you contact us or upgrade to Pro, we keep your email so we can reply or send receipts.
Data We Collect
- Profile data from the LinkedIn page you visit:name, headline, experience entries (title, company, dates), education, location. Only what's publicly visible on that profile, captured when you click "Estimate Net Worth".
- Estimation results:the generated net worth estimate, confidence score, breakdown, and a one-sentence reasoning. Cached so we don't recompute the same profile twice.
- Anonymous device identifier:a randomly-generated UUID stored in your browser's Chrome sync storage. This UUID is linked to your Google account by Chrome itself if you're signed in, so your free/Pro/Lifetime status follows you across machines.
- Usage counters:how many estimates you've run today/this month, when your quota resets.
- If you upgrade to Pro or Lifetime:billing email, country, and the payment processor's customer / subscription IDs. Card details never touch our servers. Stripe handles those.
- If you submit a bug report or contact form: the email you provide (optional for bug reports), the message body, your IP-derived country and city, extension version, browser user-agent, time zone, and language. Used only to reply and reproduce bugs.
Data We Never Collect
- Your LinkedIn login credentials or session
- Email addresses, phone numbers, or other private fields from LinkedIn profiles
- Your browsing history outside of LinkedIn
- Your LinkedIn connections, messages, or private posts
- Card numbers or full payment details (Stripe holds those)
How We Use Your Data
- Generate and cache net worth estimates
- Enforce free / Pro / Lifetime usage limits
- Process payments and send receipts (Pro/Lifetime users)
- Reply to bug reports and contact requests
- Detect and prevent abuse
- Debug failures (using minimal, non-sensitive logs)
Third-Party Services
We rely on these vendors. Each receives only what's strictly needed:
- OpenRouter / Perplexity Sonar (AI estimation): receives the cleaned LinkedIn profile text and your estimation request. Used for processing only; per their policies, prompts are not used for model training.
- Stripe (payments): receives your billing email, country, and card details when you upgrade. We receive back a customer ID, subscription status, and invoice metadata.
- Supabase (database): stores estimations, devices, bug reports, and contact messages on encrypted PostgreSQL.
- Vercel (hosting): hosts our website and backend. Sees request IPs and standard server logs.
- Crisp (live chat & bug forwarding): when you submit a bug report or contact form, the message and your email (if provided) are forwarded to Crisp so we can reply.
We do not sell, rent, or trade your data.
Data Storage & Retention
Data is encrypted in transit (HTTPS) and at rest. Estimation cache entries persist indefinitely so shared links keep working. You can ask us to delete yours at any time (see below). Bug reports and contact messages are kept for 12 months unless you ask otherwise. Billing records are retained as long as legally required.
Your Rights (GDPR / CCPA)
You can request access to, correction of, or deletion of any data we hold about you by emailing hello@checkworth.app. We'll respond within 30 days (usually within 24 hours).
Cookies
The extension itself uses Chrome's storage API (not cookies). Our website uses essential cookies for the live chat widget. We do not use advertising cookies or cross-site tracking.
Changes to This Policy
If we update this policy, we'll post the new version here with an updated date. For material changes, we'll notify Pro users by email.
Contact
Questions, concerns, or want your data deleted? Reach out at hello@checkworth.app. A real human reads every email.