Um diese Add-ons zu verwenden, müssen Sie Firefox herunterladen.

Anmelden
Add-on-Symbol

Datenschutzerklärung für Gish - A wishlist that pays attention

Gish - A wishlist that pays attention von Gish

0 von 5 Sternen
5
0
4
0
3
0
2
0
1
0
Datenschutzerklärung für Gish - A wishlist that pays attention

TL;DR
- The Extension only reads a page when YOU ask it to — via the toolbar icon,
the keyboard shortcut, or the right-click menu. It does not track browsing.
- When you save a wish, we send the page's URL, title, and (optionally) the
product image, price, and description to your Gish account so your wishlist
stays in sync.
- We use your email only to sign you in. We don't sell, rent, or share it.
- The Extension collects no usage analytics — no tracking, no third-party
analytics SDKs.
- You can export or delete your data anytime at gishme.com → Settings → Data.
- Questions: privacy@gishme.com

  1. WHAT THE EXTENSION DOES
    Save any product page as a "wish" on your Gish wishlist with one click. It can:
  2. Read the currently active tab's URL, title, and visible product metadata
    (image, price, description) only when you invoke a capture action.
  3. Show notifications when a wish is saved or fails.
  4. Queue captures locally if your connection drops, then sync when back online.
  5. Add right-click items for saving pages, links, images, or selected text.
    It cannot: read tabs you didn't capture from; run continuously in the
    background reading every page; access other domains beyond the active tab
    during a capture; or modify the pages you visit.
  6. PERMISSIONS
  7. activeTab: read the active tab's URL/title/DOM — only when you click the
    toolbar icon, press Ctrl/Cmd+Shift+G, or use a right-click item.
  8. contextMenus: add Gish right-click menu items.
  9. notifications: show "Saved to Gish" / error toasts.
  10. storage: store your auth token, settings, and any offline-queued captures.
  11. scripting: inject a one-shot script into the captured page to read product
    metadata — only on the page you chose to capture, once per capture; nothing
    persists.
  12. host_permissions for https://api.gishme.com/*: talk to the Gish API when
    sending a wish or refreshing your sign-in session.
  13. DATA WE COLLECT
    3.1 Account data: your email address — used to send the sign-in link and
    identify your account.
    3.2 Wishes you capture: page URL, title, product image URL, price, your note,
    chosen visibility (Public/Shared/Private), occasion, timestamp, and wisher-tier
    preference. Stored with your account so wishes sync across devices.
    3.3 Active page metadata (transient): when you trigger a capture, the Extension
    injects a one-shot script that reads visible product metadata (image, price,
    JSON-LD/OpenGraph, description) to pre-fill the form. This is never sent to our
    servers until you click "Save to Gish." If you cancel, nothing leaves your
    browser.
    3.4 Local-only data (never on our servers): auth token, extension settings
    (auto-detect, notifications, offline mode), and the offline queue.
  14. WHAT WE DON'T COLLECT
    We do not: track browsing history; read pages you didn't capture; see which
    sites you visit unless you save from them; read bookmarks, downloads, form
    data, or passwords; scan for ads or affiliate opportunities; inject scripts
    outside the capture flow; sell/rent/share your data; or use third-party
    analytics (Google Analytics, Mixpanel, Segment, etc.) in the Extension.
  15. HOW WE USE YOUR DATA
    To sign you in; save/sync/display your wishes; run Smart Savings
    (route-checking); send transactional emails (sign-in links, recovery, opted-in
    notifications); detect and stop abuse/fraud/security threats; and comply with
    legal obligations. We do not use your data to train AI models, build ad
    profiles, or sell to third parties.
  16. SMART SAVINGS
    When you save a wish, the Gish backend (not the Extension) checks public
    retailer listings for the same item to find the cheapest route, server-side.
    It requires no extra browser permissions and never reads your other tabs.
    Routes are visible to you; they are never disclosed to gift recipients.
  17. WHERE YOUR DATA LIVES
    Local data (auth token, settings, offline queue) stays in your browser on the
    device you installed on. Account data (email, wishes, settings) is stored on
    Gloconomy-operated infrastructure hosted in the United States on DigitalOcean
    (provisioned via Ploi), with encryption at rest (AES-256) and in transit
    (TLS 1.2+). Backups are encrypted and retained 30 days.
  18. THIRD PARTIES
  19. DigitalOcean (via Ploi): hosting for api.gishme.com — account data, request
    metadata.
  20. Resend: sending sign-in / transactional emails — your email address only.
  21. Stripe: payment processing for subscriptions (only if you subscribe) —
    billing email and payment method (handled by Stripe; we never see card
    numbers).
    We do not use ad-network tracking, affiliate rewriters, or session-replay tools.
  22. COOKIES
    The Extension sets no cookies. It uses extension-scoped local storage for the
    auth token, settings, and offline queue — not readable by websites you visit.
  23. RETENTION & DELETION
    Wishes: until you delete them or close your account. Account data: deleted
    within 30 days of account closure. Local extension data: until you uninstall or
    clear browser data. Offline queue: cleared on sync; failed items dropped after
    14 days. Server logs: 30 days. Backups: 30 days.
    Delete everything: gishme.com → Settings → Data → Delete account, or email
    privacy@gishme.com. Delete only this device's extension data: uninstall the
    Extension.
  24. YOUR RIGHTS
    All users may access, correct, delete, and object to processing of their data.
    EEA/UK/Switzerland (GDPR): also restrict processing, data portability, and
    lodge a complaint with your DPA. Legal bases: contract (providing the service)
    and legitimate interest (security, fraud prevention, improvement). California
    (CCPA/CPRA): know, delete, correct, opt out of sale/sharing (we do neither),
    limit sensitive-info use, and freedom from retaliation. Requests:
    privacy@gishme.com (we respond within 45 days).
  25. CHILDREN
    Not directed at children under 13 (under 16 in the EEA). We don't knowingly
    collect their data; email privacy@gishme.com to report.
  26. SECURITY
    TLS 1.2+ in transit; AES-256 at rest; short-lived, revocable JWT tokens;
    WAF, rate-limiting, anomaly detection; ongoing vulnerability scanning. Report
    issues to security@gishme.com. We notify affected users within 72 hours of
    discovering a qualifying breach.
  27. CHANGES
    We'll update the "Last updated" date and, for material changes, post an
    in-popup notice and email account holders before the change takes effect.
  28. CONTACT
    Privacy: privacy@gishme.com · Security: security@gishme.com · Support:
    support@gishme.com · Gloconomy, Inc., United States.