Privacy Policy
Last updated: 2026-05-27
This Privacy Policy describes how Futuristica (“we”, “us”, or “our”) collects, uses, stores, and discloses information when you use the nicesitechecker.com browser extension (the “Extension”) and the related backend service at api.nicesitechecker.com (together, the “Service”).
By installing or using the Extension you agree to this Privacy Policy. If you do not agree, do not install or continue using the Extension.
1. Who we are
Futuristica is a sole proprietorship / individual business based in Slovenia.
- Contact (privacy): [email protected]
- Service: https://nicesitechecker.com
- Policy URL: https://nicesitechecker.com/privacy
2. What information we collect
We collect only what is necessary to operate the Extension.
2.1 Information you provide when signing in
When you sign in via Google, we receive the following fields from your Google account through Google OAuth:
- Your name
- Your email address
- Your Google account subject identifier (
google_id) — an opaque, Google-issued identifier used solely to associate subsequent sign-ins with the same account
We do not request or store any other Google profile fields (profile picture, locale, gender, contacts, calendar, Gmail content, Drive content, etc.).
If you sign in with email and password instead of Google, we additionally store a salted hash of your password. We never store passwords in plain text.
2.2 Information the Extension sends to our backend during use
When you open the Extension on a webpage, the Extension sends the domain you are currently viewing (for example, example.com) to our backend at api.nicesitechecker.com in order to look up website analytics for that domain. The full URL, path, query string, page contents, and any form input you type on that page are not transmitted.
To operate the Service we may retain the domains you query and the corresponding analytics results so that repeated lookups can be served from a shared cache without re-querying upstream data providers.
As is standard for any online service, our servers may also process and temporarily retain technical request information (such as IP address, timestamp, and the authenticated account identifier) for the limited purposes of security, abuse prevention, rate limiting, and operational diagnostics.
We use this information to:
- Operate caching and rate limiting
- Track quota usage and prevent abuse
- Improve the Service
2.3 Information stored locally in your browser
The Extension stores the following data only on your device, in chrome.storage.local, localStorage, and IndexedDB. It is not transmitted to us:
- A signed authentication token (
refreshToken) and a short-livedaccessTokenissued by our backend after sign-in (these tokens include your name, email, and an expiry claim) - Your dark-mode preference (
darkMode) - The size of the in-page panel (
iframeWidth,iframeHeight,popupWidth,popupHeight) - A cache of API responses (
app-cache) and a cache of website favicons, for performance
You can clear all locally stored Extension data at any time from chrome://extensions → Details → “Site settings” / “Clear data”, or by uninstalling the Extension.
2.4 Information we do not collect
We do not collect, store, or transmit:
- Page contents, page text, scraped HTML, screenshots, or DOM data from the websites you visit
- Form inputs, passwords, payment information, or keystrokes
- Your browsing history beyond the active domain you explicitly open the Extension on
- Personally identifying information beyond name and email
- Device fingerprints, advertising IDs, or location data
- Health, financial, biometric, or other special-category data
We do not include any third-party analytics, advertising, telemetry, or fingerprinting SDKs in the Extension.
3. Google User Data
If you connect your Google account to the Service, we access and use Google user data only to provide the app features you request — specifically, to identify your account, authenticate you, and display your name in the Extension UI. We do not use Google user data for advertising, retargeting, selling data, data brokerage, or any purpose unrelated to providing or improving the Service’s user-facing functionality.
We do not use Google user data to create, train, or improve generalized AI or machine-learning models. We do not share Google user data with third parties except when necessary to provide the requested app functionality, comply with law, protect security, or with your consent. Our use and transfer of information received from Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements.
You may disconnect your Google account from the Service at any time through your Google Account permissions page or by contacting us at [email protected].
4. How we use information
We use the data described in Section 2 to:
- Authenticate you and maintain your session
- Look up and return website analytics for the domains you query
- Enforce rate limits and quota
- Cache results to improve performance
- Communicate service-essential messages to you (e.g., authentication issues), if needed
Google user data is used only as described in Section 3 (Google User Data) and is not used for advertising, sale, unrelated analytics, or generalized AI/ML model training.
5. Permissions the Extension requests, and why
The Extension declares the following Chrome permissions. Each is used solely for the purpose described:
storage— to store your auth tokens, preferences, and cached data on your device.tabs,activeTab— to detect the domain of the page you are currently viewing so the Extension can show analytics for it.scripting— to inject the Extension’s UI panel into the active tab when you open it.alarms— to schedule periodic cache cleanup and token refresh.host_permissions: <all_urls>— required so the Extension can read the domain of the website you are currently viewing and inject its in-page panel on any site. The Extension does not read page contents or scrape data from those sites.https://api.nicesitechecker.com/*— to communicate with our backend.https://www.google.com/s2/favicons*— to retrieve favicons for the sites you analyze (used as the favicon image only; no other Google service is queried).
6. Third parties
We use the following third-party services strictly to operate the Service. We do not sell or rent personal data.
| Provider | Purpose | Data shared |
|---|---|---|
| Google (OAuth) | Sign-in | Your name and email, returned by Google to us |
| Google s2 favicon service | Favicon images | The root domain you analyzed |
We may share information when required by law (e.g., a valid Slovenian or EU legal order), to protect our rights, or in connection with a corporate transaction (merger, acquisition), in which case we will notify users in advance where practicable.
7. Data retention
- Local browser data: Retained on your device until you log out, clear extension storage, or uninstall the Extension.
- Backend account record: Retained while your account is active. Deleted within 30 days of a verified account-deletion request.
- Server-side cached lookup data: Retained for the period reasonably necessary to operate the cache and enforce quotas, after which it is deleted or anonymised.
- Technical request and security logs: Retained for the period necessary for security, abuse prevention, and operational purposes, then rotated and deleted.
8. Your rights
If you are located in the European Union, the European Economic Area, the United Kingdom, or Switzerland, you have the following rights under the GDPR and equivalent laws:
- Access — request a copy of the personal data we hold about you
- Rectification — request correction of inaccurate data
- Erasure — request deletion of your account and associated data
- Restriction — request that we restrict processing of your data
- Portability — receive your data in a portable format
- Objection — object to processing based on our legitimate interests
- Withdraw consent — at any time, where processing is based on consent
To exercise any of these rights, email [email protected]. We will respond within 30 days.
Account deletion
To delete your account and associated backend data, email [email protected] with the subject line “Account deletion request” from the email address used to sign in. We will verify the request and complete deletion within 30 days.
9. Security
We protect your data through:
- TLS for all network communication between the Extension and our backend
- Short-lived access tokens with server-side rotation of refresh tokens
- Access controls on backend infrastructure
No system is perfectly secure. If we become aware of a breach affecting your personal data, we will notify you and the relevant supervisory authority as required by applicable law.
10. Children
The Service is not directed to children under 16 and we do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, contact us and we will delete it.
11. International transfers
Our backend infrastructure may be located inside or outside the European Economic Area. When personal data is transferred outside the EEA, we rely on appropriate safeguards (such as Standard Contractual Clauses) as required by the GDPR.
12. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be announced in the Extension’s release notes and on https://nicesitechecker.com/privacy. The “Last updated” date at the top reflects the most recent version. Continued use of the Service after a change constitutes acceptance of the updated policy.
13. Governing law
This Privacy Policy is governed by the laws of the Republic of Slovenia and applicable European Union law.
14. Contact
For any privacy-related question or to exercise any right described in this policy:
Futuristica
Email: [email protected]