Privacy Policy
Last Updated: February 7, 2024
At Gblock, your privacy is a priority. This Privacy Policy explains how we collect, use, and protect your personal information when you use our website and related services, including the Gblock Chrome extension.
Data Controller
The data controller responsible for the processing of your personal data is:
Jacopo Beschi
Via Don Lino Bonomelli 24, 25018 Montichiari (BS), Italy
VAT ID: IT04318360981
For any privacy-related inquiries, you can contact us at privacy@gblock.app.
Information We Collect
1. Data Collected During Google Authentication
When you sign up with Google authentication, we collect:
- Email address
- Name
- Avatar image
If you provide consent, we may use your email address to notify you about product updates, new features, or important announcements related to the Gblock Services.
2. Data Collected for Logging
For security and operational purposes, we collect:
- IP address
- Basic request information (URL and parameters)
- User agent (browser and operating system information)
3. Data from the Chrome Extension
The GBlock Chrome extension does not collect personal data. However, it stores an authentication token locally to facilitate secure API communication. This token is essential for functionality and does not contain personal data.
4. Payment Data
We do not store your payment details (e.g., credit card information). However, we store references such as subscription statuses and subscription IDs, along with customer IDs provided by Stripe, to manage your subscription.
5. Country Data
We collect your country information to:
- Determine the appropriate proxy location for your use
- Calculate applicable taxes for your subscription
This data is used exclusively for the purposes listed above and is not shared with third parties except as required for tax compliance.
6. Consent Data
We store records of your consent when you:
- Accept our Terms of Service
- Your decision to opt in or opt out of receiving email notifications about product updates
This consent data is stored to demonstrate compliance with applicable data protection laws and ensure we honor your preferences.
7. Automated spy tracker Blocklist Data
We store records of spy tracker URLs detected in your emails to automate updates to a block list, which is used to block spy trackers in your emails.
Third-Party Services
For payment transactions, we use Stripe, a third-party payment processor. When you provide payment details, they are transmitted directly to Stripe and are not stored on our servers. Stripe processes this data in accordance with its own Privacy Policy.
Stripe’s role as a payment processor means it is responsible for securely handling your payment data. Please review Stripe’s Privacy Policy for additional details on how your payment information is handled.
Cookies
We do not use cookies in the GBlock Chrome extension.
On the website, we use a single cookie to store an authentication token for session management. This cookie is essential for website functionality and is not used for tracking purposes. For more details, refer to our Cookie Policy.
How We Use Your Information
We use the collected information for the following purposes:
- Authentication: To verify your identity and provide access to our services.
- Logging: To ensure the security and proper functioning of our website.
- Communication: To send notifications or updates related to your account or our services.
- Product Updates: If you provide consent, we may use your email address to notify you about product updates, new features, or important announcements related to Gblock.
- Consent Tracking: To store and manage your consent for our Terms of Service and email notifications, as required by applicable data protection laws.
Legal Basis for Processing
We process your data under the following legal bases:
- Contractual Necessity: To provide the services you request, including authentication.
- Legitimate Interests: For security, operational logging, and ensuring service quality.
Data Storage and Transfers
Your personal data is stored and processed on secure servers located in Hetzner USA data centers. We ensure that all data transfers comply with applicable data protection regulations, including the GDPR.
For users located in the EU, we implement adequate safeguards, such as standard contractual clauses, to ensure your data is protected in accordance with GDPR requirements.
Data Retention
- Authentication data (email address, name, avatar image) and account settings are retained for as long as your account exists. You can clear all your data by canceling your account.
- Logging data, including IP address, basic request information (URL and parameters), and user agent, is retained for 30 days.
- Daily database backups are retained for 30 days.
Data Security
We implement robust security measures to protect your personal data, including:
- Secure transmission via HTTPS
- Restricted access to personal data
Your Rights
Under applicable data protection laws (e.g., GDPR), you have the right to:
- Access: Request access to the personal data we hold about you.
- Correction: Request corrections to your data.
- Deletion: Request the deletion of your data, subject to legal obligations.
- Withdrawal of Consent: Withdraw your consent for data processing (if applicable).
To exercise these rights, contact us at privacy@gblock.app.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make changes, we will update the "Last Updated" date displayed on this website. If we make substantial changes that affect your rights or how we process your data, we will notify you by email.