Privacy Policy

Last updated: 19 May 2026 · Effective: 19 May 2026

Pincue ("we", "our", "us") is a Chrome Extension and associated website that helps you capture and export UI feedback. This policy explains what data we collect, how we use it, and your rights.

1. What we collect

Account data

When you create an account, we collect your name and email address. This is stored in our Supabase database (EU West region, Ireland).

Session and note data

For Pro users, captured sessions and notes (including CSS selectors, severity tags, and free-text feedback) are stored server-side in Supabase so you can recall them later. For Free users, all session data exists only in your browser's local storage and is deleted when you close the panel.

Screenshots

Screenshots are captured using the Chrome captureVisibleTab API. They are stored temporarily in your browser's local storage and included in your exported markdown file. We do not upload screenshots to our servers.

Payment data

Payments are processed by Stripe. We store only your Stripe Customer ID, not card numbers or full payment details. See Stripe's privacy policy.

Usage data

We may collect anonymised product analytics (events like "session started", "export clicked") via PostHog to understand how the product is used. No personally identifiable information is included in these events.

2. How we use your data

To provide the service — saving and recalling your sessions (Pro only)
To manage your account and subscription
To send transactional emails (account confirmation, billing receipts)
To improve the product through anonymised analytics

We do not sell your data, use it for advertising, or share it with third parties except as described here.

3. Data storage and security

All data is stored in Supabase (AWS eu-west-1, Ireland). Connections are encrypted in transit (TLS). Row-level security policies ensure users can only access their own data. We use Supabase Auth for authentication — passwords are hashed with bcrypt and never stored in plain text.

4. Data retention

Your account and session data is retained while your account is active. If you delete your account, all associated data is permanently deleted within 30 days. Free users have no server-side data — it is cleared automatically when you close the extension panel.

5. Your rights (GDPR)

If you are in the EU/EEA, you have the right to:

Access the personal data we hold about you
Correct inaccurate data
Delete your account and all associated data
Export your data in a portable format
Object to or restrict certain processing

To exercise any of these rights, email hello@fergflannery.com. We will respond within 30 days.

6. Cookies

The Pincue website uses no tracking cookies. The extension uses chrome.storage.local — not browser cookies — to persist session state and authentication tokens locally on your device.

7. Third-party services

Supabase — database and authentication (privacy policy)
Stripe — payment processing (privacy policy)
Vercel — website hosting (privacy policy)

8. Changes to this policy

We may update this policy. We will notify you by email or in-app notice for material changes. The "last updated" date at the top will always reflect the current version.

9. Contact

For any privacy questions or requests: hello@fergflannery.com