Privacy Policy - Movie Ratings Extension

                TL;DR: We collect minimal data necessary to provide movie ratings on streaming platforms (Disney+, HBO Max, Prime Video) and manage your subscription. We don't sell your data, track your browsing history outside supported platforms, or collect personal information beyond what's needed for authentication and service delivery.
            

Single Purpose Declaration

This extension serves a single, well-defined purpose: To display TMDB movie ratings as overlay badges on supported streaming platforms (Disney+, HBO Max, and Prime Video).

All data collection and permissions are strictly limited to this core functionality. We do not track browsing history outside these platforms, do not collect personal information beyond email for subscription management, and do not share data with advertisers or data brokers. Additional platform support (Netflix, Hulu) is planned for future releases.

1. Introduction

Welcome to Movie Ratings Extension ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our browser extension and related services. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not use our extension.

2. Information We Collect

2.1 Authentication Information

We collect the following authentication-related data:

Email Address: Collected during subscription purchase to send your addon key and subscription updates
Addon Key: A unique alphanumeric key that identifies your subscription
Device Fingerprint: A cryptographically generated unique identifier for each device where the extension is installed, created from browser and device characteristics (browser version, screen resolution, timezone). This identifier is hashed locally and used solely to enforce device limits per subscription plan and prevent abuse of the free trial period.

2.2 Subscription Information

We collect and store:

Subscription Plan: Your selected plan (Basic or Pro) and billing frequency (Monthly or Annual)
Subscription Status: Active, expired, or cancelled status
Payment Information: Processed securely through Stripe (we do not store credit card numbers or payment details)
Subscription Dates: Start date, renewal date, and expiration date

2.3 Usage Information

To provide movie ratings, we collect:

Movie Titles: Titles of movies you view on supported streaming platforms (Disney+, HBO Max, Prime Video) to fetch corresponding ratings
Platform URLs: URLs of supported streaming platforms to detect movie navigation and update ratings in real-time
Extension Version: Browser extension version for compatibility and troubleshooting

2.4 Information We Do NOT Collect

We explicitly DO NOT collect:

Browsing history outside of supported streaming platforms
Personal identification information (name, address, phone number)
Health information
Location data or GPS coordinates
Private communications (emails, messages, chats)
Content from streaming platforms (video content, subtitles, etc.)
Keystroke logging or mouse tracking

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Delivery

Display movie ratings (TMDB) on supported streaming platforms
Validate your subscription status and enforce device limits
Cache ratings locally to improve performance and reduce API calls

3.2 Account Management

Process subscription payments through Stripe
Send subscription confirmation, renewal reminders, and payment failure notifications
Manage device registrations and enforce device limits per plan
Handle subscription cancellations and refunds

3.3 Service Improvement

Analyze aggregated usage patterns to improve rating accuracy
Debug and fix technical issues
Develop new features and platform support

4. Data Storage and Security

4.1 Data Storage

Local Storage: Extension settings, addon key, and cached ratings are stored locally in your browser
Server Storage: Subscription data and device fingerprints are stored securely in our database
Retention Period: Active subscription data is retained while your account is active. After subscription cancellation, data is retained for 90 days for billing and support purposes, then permanently deleted

4.2 Security Measures

All API communications are encrypted using HTTPS/TLS
Device fingerprints are generated using secure cryptographic hashing (SHA-256)
Payment processing is handled exclusively by Stripe (PCI DSS compliant)
Database access is restricted with role-based access control
Regular security audits and updates

5. Data Sharing and Third Parties

5.1 Third-Party Services

We use the following third-party services to operate our extension:

TMDB (The Movie Database): We use TMDB's API to retrieve movie ratings and metadata. No personal data is shared with TMDB. Only movie titles and identifiers are transmitted. TMDB's privacy policy is available at https://www.themoviedb.org/privacy-policy
Stripe (Payment Processing): Payment processing is handled securely by Stripe. We do not store credit card numbers or payment details on our servers. Stripe's privacy policy is available at https://stripe.com/privacy
Google Analytics (Website Analytics): If you accept analytics cookies on our website pages, Google Analytics measures page views and website usage on movie-ratings.net and auth.movie-ratings.net. This does not apply inside the browser extension. Google's privacy policy is available at https://policies.google.com/privacy

5.2 Chrome Web Store Limited Use Compliance

The use of information received from Google APIs will adhere to the Chrome Web Store User Data Policy, including the Limited Use requirements.

We do not use Google APIs for advertising, data brokering, or any purpose beyond displaying movie ratings on streaming platforms. User data is never sold, shared with advertisers, or used for credit decisions.

5.3 No Data Selling

We do NOT sell, rent, or trade your personal information to third parties for marketing purposes.

5.4 Legal Disclosure

We may disclose your information if required by law, court order, or government regulation, or to protect our rights, property, or safety.

6. Your Rights and Choices

6.1 Access and Control

You have the right to:

Access: Request a copy of your personal data stored in our systems
Correction: Update or correct inaccurate information
Deletion: Request deletion of your account and associated data
Portability: Receive your data in a portable format
Opt-Out: Unsubscribe from marketing emails (subscription-related emails will continue)

6.2 Device Management

You can manage registered devices through your account dashboard at /account.html

6.3 Extension Uninstallation

You can uninstall the extension at any time through your browser's extension management page. This will remove all locally stored data but will not cancel your subscription.

7. Children's Privacy

Our service is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe we have collected information from a child under 13, please contact us immediately.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable data protection laws (GDPR, CCPA).

9. Browser Extension Permissions

9.1 Permission Justifications

Our extension requires the following browser permissions:

activeTab: Access currently active tab only when you visit supported streaming platforms
storage: Save addon key, subscription status, and cached ratings locally
tabs: Detect URL changes to update ratings when navigating between movies
offscreen: Generate secure device fingerprints in background for subscription validation
Host Permissions: Access to specific streaming platform domains (Disney+, Netflix, HBO Max, Prime Video, Hulu) and our API endpoints

9.2 No Remote Code Execution

offscreen: Generate secure device fingerprints in background for subscription validation

Host Permissions: Access to specific streaming platform domains (Disney+, HBO Max, Prime Video

10. Cookies and Tracking

We use essential cookies for session management on our web portal. If you explicitly accept analytics cookies on our website pages, we also use Google Analytics to measure page visits and general website usage. We do not use Google Analytics or advertising cookies inside the browser extension.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy with an updated "Last Updated" date. Continued use of the extension after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy, need to exercise your data rights, or have privacy concerns, please contact us:

Email: contact@movie-ratings.net
Support: contact@movie-ratings.net
Response Time: We aim to respond within 48 hours

13. Compliance

This Privacy Policy complies with:

GDPR (General Data Protection Regulation - EU)
CCPA (California Consumer Privacy Act - USA)
Chrome Web Store Developer Program Policies
Mozilla Add-on Policies

                Summary of Our Commitments
                ✅ We collect only essential data for service delivery
✅ We do NOT sell your data to third parties
✅ We do NOT track your browsing outside supported platforms
✅ We use industry-standard security measures
✅ You have full control over your data and can delete it anytime
✅ We are transparent about what data we collect and why

            