Unprompt
Legal

Privacy Policy

Last updated: June 8, 2026

Unprompt (the "extension") is built and operated by TDCProducts, a sole proprietorship ("we," "us," "our"). This policy explains, in plain language, what data the extension and this website do and don't handle.

The short version: Unprompt does its blocking inside your browser. We never see the pages you visit, your browsing history, the URLs you open, page text, or what you type. We collect almost nothing — and what little we do is described below.

On this page

  1. Blocking happens locally
  2. The rule file we send you
  3. Optional reports
  4. Anonymous install ID
  5. Billing & your license
  6. No ad networks or trackers
  7. Cookies on this website
  8. Data retention
  9. Your rights (GDPR & CCPA)
  10. Sub-processors
  11. Children
  12. Changes & contact

1. Blocking happens locally

The extension does all blocking locally in the browser. It does not send the pages you visit, your browsing history, URLs, page text, or form contents anywhere. There is no server-side log of where you go or what you read, because that information never leaves your device.

2. The rule file we send you

The extension periodically downloads a small rule file from our server (hosted on Cloudflare). This is the list of known AI surfaces to hide. It is a normal file download — it comes down to your browser and does not carry your browsing data with it. Requesting a file necessarily involves your device's IP address reaching our infrastructure, as with any web request; we do not use it to build a profile of you, and our CDN provider (Cloudflare) processes it only to deliver the file and guard against abuse.

3. Optional reports

If you choose to click "report a mistake" or "report missed AI," the extension sends a privacy-safe report. This is entirely optional and only happens when you tap the button. A report contains:

  • The site's hostname only — no path, no query string (e.g. example.com, never the full address of the page).
  • A structural fingerprint: HTML tag names, the shapes of CSS class names (letters become a and digits become 0, so the literal values never leave your device), attribute names (not their values), and child-element counts.

A report never includes page text, never attribute values, and never screenshots. Reports are re-sanitized again on our server as a second safeguard.

4. Anonymous install ID

The extension generates an anonymous random install ID — a UUID that is not tied to your identity. It is used only to rate-limit report spam, and it is not stored alongside report content. We cannot use it to identify you, and it carries no personal information.

5. Billing & your license

Billing is handled by Paddle, which acts as our payment processor and merchant of record. When you subscribe, your card details go to Paddle, never to us. On our side, we store only an anonymous license token that maps to your plan status — no name and no email. Paddle's handling of your payment information is governed by Paddle's privacy policy.

6. No ad networks or trackers

We use no ad networks, no analytics SDKs, no data selling, and no third-party trackers in the extension. We don't sell your data, because we don't collect the kind of data there'd be to sell.

7. Cookies on this website

This marketing site uses only what's strictly necessary to function, plus Paddle's checkout cookies when you open the checkout. We do not load Google Analytics, Meta pixels, or similar advertising trackers. If we ever add privacy-respecting, cookieless analytics (such as Plausible or Fathom), we will disclose it here first.

8. Data retention

Because we collect so little, there is little to retain:

  • Reports (hostname + structural fingerprint) are kept only as long as needed to improve and maintain our blocking rules, after which they are deleted or aggregated into anonymous rule statistics that cannot be linked back to any submission.
  • The anonymous install ID used for rate-limiting is retained only as long as needed to prevent abuse.
  • Your license token is retained while your subscription is active and for a reasonable period afterward to handle renewals, refunds, and support.

9. Your rights (GDPR & CCPA)

Depending on where you live, you may have the right to access, correct, or delete the personal data a company holds about you, and to object to or restrict its processing. Because Unprompt holds almost no personal data — no name, no email, no browsing history — honoring these requests is straightforward.

  • Access / deletion: email support@tryunprompt.com and we will help you locate and delete what little is associated with your license token or install ID.
  • Billing data held by Paddle (as merchant of record) is subject to Paddle's privacy policy and your rights there; we will assist in directing requests appropriately.
  • We do not sell or share personal information as those terms are defined under the CCPA/CPRA.

10. Sub-processors

We rely on a small number of service providers to operate Unprompt:

  • Cloudflare — hosting and delivery of the rule file, this website, and our backend.
  • Paddle — payment processing and merchant of record, and therefore a sub-processor for billing-related data.

11. Children

Unprompt is a general-audience tool and is not directed at children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal information from children.

12. Changes & contact

If we change this policy, we'll update the "last updated" date above and, for material changes, note it in the extension or on this site. Questions or requests? Email support@tryunprompt.com.

This policy reflects our actual data practices and is provided for transparency. It is not a substitute for legal advice.