Privacy Policy

Last updated: April 8, 2026

1. Overview

Fine Print ("we," "our," or "us") is a Chrome extension that detects and analyzes legal agreements on web pages. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data.

The short version: We do not store your documents. We do not use your data to train AI models. Agreement text is analyzed in real time and discarded immediately. Your analysis history is stored locally in your browser, not on our servers.

2. Information We Collect

Account Information

When you create an account, we collect your email address and store it in our authentication system. If you subscribe to a paid plan, your email and a customer identifier are stored for billing purposes.

Agreement Text

When you analyze a legal agreement, the text content of that document (up to 25,000 characters) is sent to our server and forwarded to Anthropic's API for AI-powered analysis. This text is processed in real time and is not stored on our servers after the analysis is returned. We do not retain the content of agreements you analyze.

Browsing & Page Metadata

The extension requests access to web pages you visit in order to detect legal agreements on any site and to fetch tracked agreement pages in the background for change monitoring. It does not read, collect, or transmit page content unless you explicitly click "Analyze." The URL and title of pages where legal agreements are detected are stored locally in your browser to power your analysis history and watchlist features. This metadata is not transmitted to our servers unless you encounter an error (see Error Reporting below).

Usage Data

We track the number of analyses you perform each month to enforce plan limits. This count is stored server-side and associated with your user account. We do not track which specific documents you analyze.

Change Monitoring & Email Notifications

When you enable tracking on an agreement, the extension periodically checks for content changes by comparing text hashes. If a change is detected and you have email notifications enabled, we send a notification to your account email address via Resend. These emails include the domain name, a summary of changes, and risk assessment updates. You can disable email notifications at any time from your account settings or by clicking the unsubscribe link in any notification email.

Local Browser Storage

The extension stores data locally in your browser including: your analysis history (URLs, titles, risk assessments, and findings), watchlist settings, authentication tokens, and cached usage counts. This data stays on your device and is not synced to our servers.

3. How We Use Information

• To provide analysis: Agreement text is sent to our AI provider to generate risk assessments and findings.
• To manage your account: Your email and subscription status are used for authentication and billing.
• To enforce usage limits: Monthly analysis counts are tracked per account to apply plan limits.
• To notify you of changes: If you track agreements, we send email notifications when terms change so you stay informed.
• To improve reliability: Error reports help us identify and fix bugs in the extension.

We do not sell, rent, or share your personal information with third parties for marketing purposes.

4. Third-Party Services

We use the following third-party services to operate Fine Print:

• Anthropic (Claude API): Processes agreement text to generate analyses. Text is sent server-side via our backend and is subject to Anthropic's Privacy Policy. Anthropic does not use API inputs to train its models.
• Supabase: Provides our authentication system, database, and serverless functions. Stores your account profile, usage counts, and subscription data.
• Polar: Processes payments for paid subscriptions as our Merchant of Record. When you upgrade, your email and a user identifier are shared with Polar to create your billing account. Polar handles payment processing, tax compliance, and invoicing. Their handling of payment data is governed by Polar's Privacy Policy.
• Resend: Delivers email notifications when tracked agreements change. Your email address is shared with Resend solely for email delivery. No agreement content is shared with Resend beyond the domain name and a brief summary included in the notification email. Resend's data handling is governed by Resend's Privacy Policy.
• Sentry: Receives error reports when something goes wrong in the extension. Error reports may include the URL of the page where the error occurred, stack traces, and browser metadata. They do not include agreement text or analysis results.

5. Data Retention

• Agreement text: Not retained. Processed in memory and discarded after analysis is returned.
• Account data: Retained as long as your account is active. Deleted upon account deletion.
• Usage counts: Stored per calendar month. Historical months are retained for billing records.
• Local browser data: Stored until you clear it manually or uninstall the extension.
• Change notification records: Retained server-side as long as your account is active. Deleted upon account deletion.
• Error reports: Retained in Sentry for up to 90 days.

6. Data Security

All data transmitted between the extension, our servers, and third-party services is encrypted in transit using TLS. Authentication tokens are stored locally in your browser's extension storage, which is sandboxed from other extensions and websites. Server-side data is protected by Supabase's row-level security policies, ensuring users can only access their own data.

7. Your Rights

You can:

• Access your data: View your analysis history and account information directly in the extension and on your account page.
• Delete local data: Clear your analysis history, watchlist, and cached data by removing the extension or clearing extension storage.
• Delete your account: Contact us to delete your account and all associated server-side data.
• Manage email preferences: Opt out of change notification emails at any time via your account settings or the one-click unsubscribe link in any notification email.
• Export your data: You can export individual analysis reports from the extension or your dashboard.

8. Children's Privacy

Fine Print is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of material changes through the extension or on our website. The "Last updated" date at the top reflects the most recent revision. Continued use of Fine Print after changes constitutes acceptance of the updated policy.

10. Contact

For privacy-related questions or data deletion requests, contact us at [email protected].