Privacy Policy

Last updated: February 2026

Our Commitment

PhishClean is built on a simple principle: your browsing data stays on your device. We never see, collect, or transmit your passwords, URLs, page content, or browsing history.

What Stays on Your Device

• All page analysis and phishing detection (14 signals)
• Secret and API key scanning
• URL and token scanning
• Risk scoring and alert decisions
• Trusted domain list and preferences
• Blocked threat statistics

What We Collect

The only data that touches our server:

• Anonymous install_id — A randomly generated UUID created on first install. Not linked to your identity.
• License status — Whether your trial is active or you have a paid plan.
• Extension version — To ensure compatibility.

That's it. No browsing history. No URLs. No passwords. No page content. No analytics. No tracking pixels.

Contact Form

If you use the contact form on our website, we collect the name, email, and message you provide. This data is used solely to respond to your inquiry and is not shared with third parties.

Payment Processing

Payments are processed by Dodo Payments. We do not store credit card numbers. Your payment is linked to your anonymous install_id, not to an email or account.

Data Retention

License records are retained as long as the extension is installed. Contact messages are retained for support purposes. You can request deletion at any time by contacting us.

GDPR & International Users

Since we collect minimal data (anonymous UUID and license status only), there is very little personal data involved. However, EU users retain full rights under GDPR including data access, rectification, and deletion. Contact us at the address below to exercise these rights.

Changes

We may update this policy as needed. Significant changes will be noted on this page with an updated date.

Contact

For privacy questions or data deletion requests, use the contact form on our website.