Privacy Policy

Your privacy is important to us. It is AppRevu's policy to respect your privacy and comply with applicable laws regarding personal information we collect across our website, https://apprevu.com, our Chrome extension, and other sites or services we own and operate.

Personal information means information that identifies, relates to, describes, or can reasonably be linked with you or your household (e.g., name, contact info, payment details, device data, and information about your use of our services).

If our site links to third-party sites or services, their practices are governed by their own privacy policies. This Privacy Policy does not apply once you leave our site.

Effective date: October 5, 2025
Last updated: October 5, 2025

Change log (summary): Added Chrome Extension disclosures (permissions, host permissions, content scripts, background service worker, web-accessible resources); expanded CPRA/GDPR sections; clarified retention, security, cookies/consent, Stripe processing; added opt-out & GPC details; refined third-party sharing language.

Information We Collect

We collect information that is (a) voluntarily provided by you and (b) automatically collected from your device when you access our services.

Log Data

When you visit our website, our servers may log your IP address, browser type/version, pages visited, timestamps, and time on page. If errors occur, we may capture technical details to help diagnose the issue. While this data may not identify you on its own, it could be combined with other information to identify you.

Personal Information

We may ask for personal information—for example, when you register, purchase a subscription, or contact us—including:

  • Name
  • Email

Transaction & Usage Data

We generate and process data about your use of our services, such as subscription status, feature usage, diagnostics, and aggregated analytics.

Chrome Extension Privacy

Our Chrome extension requests only the minimum permissions necessary to provide its features. Specifically, it may request the following permissions from your browser:

  • activeTab — interact with the currently active tab when you use the extension
  • cookies — read/write cookies on permitted domains to support session-aware features
  • identity — enable OAuth/identity flows where required by extension features
  • scripting — inject scripts needed to render or modify page elements
  • storage — store extension settings and state using Chrome storage
  • tabs — access limited information about your tabs to provide extension workflows you initiate
  • webNavigation — observe navigation events on permitted sites to trigger in-page features
  • webRequest — observe or modify network requests on permitted sites to enable functionality
  • windows — open or manage extension windows/popups you initiate

Host permissions: the extension is authorized to run only on the following domains:

  • *://appstoreconnect.apple.com/*
  • *://apple.com/*
  • *://itunes.apple.com/*

Content scripts: the extension injects scripts and styles on appstoreconnect.apple.com and apple.com to enable product features (per the manifest).
Background service worker: assets/js/background.bundle.js manages background logic and events.
Web-accessible resources: the extension exposes specific assets (e.g., CSS, images, fonts, certain HTML/JSON) to pages as needed.

Data access & storage: the extension uses Chrome storage to save extension settings and state. Depending on the feature you invoke, the extension may read cookies or observe network requests on the permitted domains listed above in order to provide the functionality you asked for. Unless a feature explicitly transmits data to our servers (described in that feature’s UI or documentation), data used by the extension remains within your browser.

Limited Use: We do not sell extension data, use it for creditworthiness, or use it for interest-based advertising. We use extension data only to provide and improve the extension as described here.

Legitimate Reasons / Legal Bases

We collect and use personal information when necessary and lawful. Our primary purposes and legal bases are:

  • Account provisioning & subscriptions: Contract
  • Security & fraud prevention: Legitimate interests; legal obligation in some cases
  • Service analytics & improvement: Legitimate interests (with consent where required for cookies)
  • Marketing emails: Consent (you may withdraw at any time)
  • Compliance & record-keeping: Legal obligation

Collection and Use of Information

We collect information when you register, purchase, contact us, sign up for updates, access our content, or interact with our social channels. We use it to provide core features, personalize your experience, communicate with you, operate and improve our services, ensure security, run promotions with your consent, and comply with laws.

Security of Your Personal Information

We use industry-standard safeguards including TLS encryption in transit, access controls and least-privilege role management, audit logging, and subprocessor due diligence. No method is 100% secure, but we regularly review and improve our controls.

How Long We Keep Your Personal Information

  • Account & profile: While the account is active and up to 24 months after inactivity
  • Billing & invoices: 7 years (tax/legal)
  • Server logs: 90 days (security/troubleshooting)
  • Marketing preferences: Until you opt out or 24 months after last interaction

We may retain anonymized or aggregated information for analytics.

Children’s Privacy

Our services are not directed to children under 13, and we do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete it.

Disclosure to Third Parties (Processors & Partners)

We share personal information with service providers that help us deliver our services under contracts that limit their use of your information to our instructions. These include:

  • Payments: Stripe (payment processing; we do not store full card numbers)
  • Authentication: Apple Sign-in (if used by you)
  • Hosting/Infrastructure: Microsoft Azure
  • Analytics: Google Analytics (with consent where required)
  • Email/Support: Amazone SES

We may also disclose information: (i) to comply with law or protect rights, (ii) in connection with a business transfer (see “Business Transfers”), or (iii) with your direction or consent.

Payments

We use Stripe to process payments. Stripe is PCI-DSS compliant. We do not store full payment card numbers on our servers. See Stripe’s privacy notice for details.

International Transfers of Personal Information

We may process and store information in the United States and other countries where we or our service providers operate. Where required, we use appropriate safeguards (such as standard contractual clauses) to protect personal information transferred internationally.

Your Rights & How to Exercise Them

  • Access & portability — request copies of your data
  • Correction — ask us to fix inaccurate or incomplete data
  • Deletion — request deletion, subject to legal exceptions
  • Restriction & objection — restrict or object to certain processing
  • Marketing — withdraw consent or opt out at any time

How to submit: Email support@apprevu.com. We may request limited information to verify your identity. We generally respond within 45 days (may extend once by 45 days where permitted).

Appeals: If we deny your request, you may appeal by replying “Appeal” to our decision; we will review and respond within 45 days and include how to contact your regulator where required.

Cookies & Consent

We use necessary cookies and—where required by law and with your consent—analytics and advertising cookies. You can change your preferences anytime in Cookie Settings. See our Cookie Policy for current vendors and cookie lifetimes.

Do Not Track & Global Privacy Control

While we do not respond to browser “Do Not Track” signals, we honor Global Privacy Control (GPC) signals as an opt-out of “sale”/“sharing” where required by law.

California Privacy (CPRA)

Notice at Collection (last 12 months): We collect the following categories of personal information:

  • Identifiers: name, email, IP address
  • Commercial information: subscription and transaction history
  • Internet/network activity: log data, analytics events
  • Geolocation: coarse IP-based location (we do not collect precise geolocation)
  • Inferences: product interests derived from your interactions

Sources: you, your devices, payment processor, analytics providers. Purposes: account/subscription, service provision, security/fraud, analytics and improvement, and (with consent where required) marketing.

Selling/Sharing: We do not sell and do not share personal information for cross-context behavioral advertising. To exercise your rights, send a request to support@apprevu.com. We honor GPC where required.

Sensitive Personal Information: We do not use or disclose sensitive personal information for purposes other than those permitted by CPRA.

Consumer rights: know, access, correct, delete, opt-out of sale/sharing, limit use/disclosure of sensitive PI (if applicable), and non-discrimination. Instructions for submitting, verification, and appeals are in “Your Rights & How to Exercise Them.”

Additional Disclosures for Australian Privacy Act (AU)

Where Australian privacy laws apply, you acknowledge some recipients may not be regulated by the Privacy Act. Where required, we use appropriate safeguards to protect your information.

GDPR / UK GDPR Disclosures

Controller: AppRevu Inc., PO Box 681, Pismo Beach, CA 93448.

Transfers outside EEA/UK: We use appropriate safeguards (e.g., Standard Contractual Clauses/UK IDTA) with processors where applicable.

Your rights: access, rectification, erasure, restriction, portability, objection, and the right to lodge a complaint with your local authority (e.g., ICO in the UK). We do not conduct automated decision-making producing legal or similarly significant effects without human involvement.

Business Transfers

If we are involved in a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction, subject to this policy and applicable law.

Limits of Our Policy

We are not responsible for the privacy practices of external sites we link to. Review their policies before submitting personal information.

Changes to This Policy

We may update this policy to reflect changes to our practices or legal requirements. We will post updates here and, where required, notify you and/or seek your consent.

Contact Us

Email: support@apprevu.com
Postal: AppRevu Inc., PO Box 681, Pismo Beach, CA 93448