WooScraper
Install extension
Legal

Privacy policy

Last updated: 12 May 2026

What we collect

When you sign up we collect your email, an optional display name, and a hashed password. If you sign in with Google we additionally store the Google account ID and any avatar URL Google provides. We do not collect, store, or transmit your social-security number, financial documents, or any government identifier.

What the extension does on a source store

The WooScraper Chrome / Edge extension reads publicly visible product data from any storefront you choose to scrape, exactly as a normal visitor's browser would. It does not:

  • access cookies belonging to the source store's checkout or admin pages
  • request payment-method, authentication, or PII permissions in its manifest
  • persist source-store responses inside the extension — they're streamed to our backend for processing and image rehosting

Destination-store credentials

If you save Woo REST keys or a Shopify Admin token in your dashboard, they are encrypted with AES-256-GCM before being written to our database, using a key derived from a per-environment secret you never see. Plaintext credentials are never logged.

Cookies & sessions

We set one session cookie via Better-Auth. It is HTTP-only, secure, and SameSite=Lax. No third-party analytics cookies are set. We may add privacy- respectful first-party analytics (Vercel Web Analytics) which counts page views by IP-anonymized fingerprint only.

Sub-processors

  • Vercel — hosting, edge network, image / static asset CDN
  • Neon — managed Postgres database for product / job / user data
  • Vercel Blob — encrypted blob storage for rehosted product images and CSV/ZIP exports
  • Stripe — payment processing; we never store full card numbers
  • Resend — transactional email (sign-up confirmations, job-complete notifications)

Data retention

Free-tier scrape jobs expire after 24 hours. Paid tiers retain job data for 30 / 60 / 90 days based on plan (Small / Medium / Large & XL). After retention, all related products, images, exports, and reviews are permanently deleted by a daily cron. Account data is retained for as long as your account is active; deleting your account purges all linked records.

Your rights

Email privacy@wooscraper.com to export, correct, or delete your data. We reply within 7 days.

Contact

WooScraper · operated by Anyshop · for privacy inquiries: privacy@wooscraper.com.