Privacy Policy

Overview

Accountability Shield is a Chrome extension that helps you stay accountable by blocking distracting websites and notifying your accountability partners. To provide this service, we collect and process certain information about you and your browsing activity.

We are committed to:

Transparency: Being clear about what data we collect and why
Minimal data collection: Only collecting what's necessary to provide our service
User control: Giving you full control over your data
No selling: Never selling your data to third parties
Security: Protecting your data with industry-standard security measures

Data We Collect

1. Account Information

When you create an account, we collect:

Email address: Used for account authentication, password recovery, and sending accountability notifications
Name: Optional display name for your account
Password: Stored securely using bcrypt hashing (we never store passwords in plain text)

2. Blocking Configuration Data

To provide the blocking functionality, we store:

Accountability groups: Names and descriptions of groups you create
Blocked websites: Domain patterns and URLs you choose to block
Group settings: Blocking schedules, exceptions, and custom rules you configure
Accountability partners: Names and email addresses of people you invite to receive notifications

3. Activity Data

To enable accountability notifications, we record:

Block attempts: Timestamps and domain names when you attempt to access blocked sites
Notification history: Record of which partners were notified and when
Group activity: Basic usage statistics (e.g., number of sites blocked, attempts made)

4. Technical Data

Browser type and version: To ensure compatibility
Extension version: To provide updates and support
API authentication tokens: To securely sync data across devices

What We DON'T Collect:

Your full browsing history (only blocked site attempts)
Content of websites you visit (only domain names)
Personal information beyond what you provide
Third-party tracking cookies or analytics
Data from websites you successfully access (only blocked attempts)

How We Use Your Data

We use the data we collect for these specific purposes:

Account Management

Create and maintain your user account
Authenticate your login sessions
Send password reset emails when requested
Provide customer support

Core Blocking Functionality

Enforce website blocking rules you configure
Sync your blocking groups across devices where you're logged in
Apply blocking schedules and exceptions
Maintain pre-loaded blocklists (adult content, gambling, etc.)

Accountability Notifications

Send email alerts to your designated accountability partners when you attempt to access blocked sites
Include relevant context in notifications (which site, which group, when)
Send partner invitation emails

Service Improvement

Aggregate, anonymized usage statistics to improve the extension
Identify and fix bugs
Develop new features based on user needs

Important: We use your data ONLY for the purposes listed above. We never use your data for advertising, profiling, or any purpose unrelated to accountability and website blocking.

Data Sharing and Disclosure

Who We Share Data With

Accountability Partners (By Your Explicit Choice):

We send email notifications to people you designate as accountability partners
Notifications include: your name, the blocked site domain, the group name, and timestamp
You have full control over who receives notifications and can remove partners at any time

Service Providers:

Email service: We use a third-party email service (e.g., SendGrid, Mailgun) to send accountability notifications and system emails
Hosting provider: Our backend API and database are hosted on secure cloud infrastructure
These providers are bound by strict data processing agreements and cannot use your data for their own purposes

When We Share Data

With your consent: When you explicitly choose to share (e.g., adding accountability partners)
Legal requirements: If required by law, court order, or government regulation (we will notify you unless legally prohibited)
Security threats: To prevent fraud, security threats, or illegal activity
Business transfers: If Accountability Shield is acquired, your data may transfer to the new owner (you will be notified)

We DO NOT:

Sell your data to third parties
Share data with advertisers or marketing companies
Use your data for purposes unrelated to accountability
Share your browsing activity publicly

Data Storage and Security

How We Store Your Data

Local storage: Your blocking groups and settings are stored locally in your browser using Chrome's storage API
Cloud storage: Data is also stored on our secure servers to enable syncing across devices
Encryption in transit: All data transmission uses HTTPS/TLS encryption
Encryption at rest: Database is encrypted using industry-standard encryption

Security Measures

We implement multiple layers of security:

Password hashing: Passwords are hashed using bcrypt with salt
API authentication: Secure token-based authentication for all API requests
Access controls: Strict role-based access to data and systems
Regular audits: Periodic security reviews and vulnerability assessments
Secure infrastructure: Hosted on reputable cloud providers with strong security track records

Data Retention

Account data: Retained while your account is active
Blocking logs: Block attempt records are retained for 90 days for accountability reporting
Deleted accounts: When you delete your account, all associated data is permanently deleted within 30 days
Backup retention: Encrypted backups are retained for 30 days for disaster recovery

Your Rights and Controls

You have the following rights regarding your data:

Access Your Data

View all data we have about you through the extension settings
Request a downloadable copy of your data

Correct Your Data

Update your account information (name, email) at any time
Modify your blocking groups and settings
Correct any inaccurate information

Delete Your Data

Delete specific blocking groups or block records
Remove accountability partners from your groups
Delete your entire account and all associated data

Export Your Data

Export your blocking groups and settings in JSON format
Download your activity history
Port your data to another service

Control Notifications

Add or remove accountability partners at any time
Disable notifications for specific groups
Opt out of system emails (except critical security notices)

How to Exercise Your Rights:

Most rights can be exercised directly through the extension settings. For requests requiring manual assistance, contact us at [email protected]. We will respond within 30 days.

Third-Party Services

Accountability Shield uses the following third-party services:

Email Service Provider

Purpose: Sending accountability notifications and system emails
Data shared: Email addresses, notification content, timestamps
Privacy policy: [Link to email provider's privacy policy]

Cloud Hosting Provider

Purpose: Hosting our backend API and database
Data shared: All data stored on our servers
Security: SOC 2 compliant, GDPR compliant

What We DON'T Use

                Google Analytics or similar tracking: No third-party analytics
Advertising networks: No ads, no tracking pixels
Social media integrations: No Facebook/Twitter tracking
Data brokers: We never share data with data brokers

            

Children's Privacy

Accountability Shield is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13.

If we discover that we have collected data from a child under 13, we will delete that information immediately. If you believe we have collected data from a child under 13, please contact us at [email protected].

International Data Transfers

Accountability Shield is operated from [Your Country]. If you are accessing the service from outside [Your Country], please be aware that your data may be transferred to, stored, and processed in [Your Country] and other countries where our service providers operate.

By using Accountability Shield, you consent to the transfer of your data to these locations. We ensure that all data transfers comply with applicable data protection laws, including GDPR for European users.

Your Legal Rights (GDPR & CCPA)

For European Users (GDPR)

If you are in the European Economic Area (EEA), you have additional rights under GDPR:

Right to access: Obtain confirmation of data processing and a copy of your data
Right to rectification: Correct inaccurate or incomplete data
Right to erasure ("right to be forgotten"): Request deletion of your data
Right to restrict processing: Limit how we use your data
Right to data portability: Receive your data in a machine-readable format
Right to object: Object to certain types of data processing
Right to withdraw consent: Withdraw consent for data processing at any time

For California Users (CCPA)

If you are a California resident, you have rights under the California Consumer Privacy Act:

Right to know: What personal information we collect and how it's used
Right to delete: Request deletion of your personal information
Right to opt-out: Opt out of sale of personal information (we don't sell data)
Right to non-discrimination: We won't discriminate against you for exercising your rights

Cookies and Tracking

Accountability Shield uses minimal cookies and local storage:

Essential Cookies

Authentication tokens: To keep you logged in (stored in Chrome's secure storage)
Session data: To maintain your session across page reloads

What We Don't Use

Advertising cookies
Third-party tracking cookies
Analytics cookies
Social media cookies

You can clear cookies and local storage by logging out or through your browser settings.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements.

How we notify you:

Material changes: Email notification to all users
Minor changes: Updated "Last Updated" date at the top of this page
Extension notification: In-app notification for significant changes

Your continued use of Accountability Shield after changes become effective constitutes acceptance of the updated policy. If you disagree with changes, you may delete your account.