Privacy Policy

Version 1.0 | December 20, 2024

Privacy Policy

Version 1.0 | December 20, 2024

Privacy Policy

Version 1.0 | December 20, 2024

Polar Luma Importer Chrome Extension

1. Introduction

This Privacy Policy explains how the Polar Luma Importer Chrome Extension ("Extension") collects, uses, and protects your information. The Extension is operated by WebZero ("we", "us", or "our").

By installing and using the Extension, you agree to the collection and use of information in accordance with this policy.

2. Extension Purpose

The Polar Luma Importer Extension has a single purpose: to help Luma event organizers import their event data and guest lists into Polar for identity resolution, community analytics, and targeted outreach campaigns.

3. Data We Collect

3.1 Event Metadata from Luma

When you browse your Luma event management pages, the Extension captures event metadata including:

  • Event name and date

  • Event ID

  • Registration questions configured for the event

3.2 User-Provided Data


  • Polar API Key: You provide this to authenticate with Polar

  • CSV Files: Guest lists you explicitly choose to upload to Polar

  • Email Address: Your Polar account email for identification

3.3 Analytics Data

We collect anonymous usage analytics via PostHog to improve the Extension:

  • Extension installation and update events

  • Feature usage (e.g., uploads, connection status)

  • Error events for debugging

We do not track your browsing history, web activity outside Luma domains, or any personally identifiable information beyond what you explicitly provide.

4. Data We Do NOT Collect

  • Health information

  • Financial or payment information

  • Authentication credentials (passwords, PINs)

  • Personal communications (emails, messages)

  • Location data (GPS, IP-based location)

  • Browsing history outside of Luma domains

5. How We Use Your Data

  • Event Import: To capture and display Luma event metadata for upload to Polar

  • Authentication: To verify your Polar account and enable data uploads

  • Data Processing: To upload your guest lists to Polar for identity resolution

  • Product Improvement: Anonymous analytics help us improve the Extension

6. Data Storage

6.1 Local Storage

The following data is stored locally on your device using Chrome's storage API:

  • Polar API key (encrypted)

  • Captured event metadata (last 20 events)

  • User preferences (auto-capture toggle)

  • Anonymous analytics identifier

6.2 Server Storage

When you upload data to Polar, it is stored on our secure servers hosted on Supabase. This data is protected by row-level security (RLS) policies ensuring only you can access your data.

7. Data Sharing

We do not sell or share your personal data with third parties except:

  • Polar: Data you explicitly choose to upload

  • PostHog: Anonymous usage analytics (no personal data)

  • Legal Requirements: If required by law or legal process

8. Remote Code

The Extension does not use remote code. All JavaScript is bundled within the extension package. The Extension makes HTTP requests to external APIs (Polar for data upload, PostHog for analytics) but does not load or execute any external JavaScript, WebAssembly, or dynamic code.

9. Permissions Explained

storage

Required to persist your Polar API key, captured events, and preferences across browser sessions.

activeTab

Required to read event data from the currently active Luma page when you interact with the Extension.

Host Permissions (lu.ma, luma.com, api.lu.ma, api2.luma.com)

Required to run content scripts on Luma pages and intercept Luma API responses to capture event metadata. These permissions are strictly limited to Luma's domains.

10. Your Rights

You have the right to:

  • Access: View all data the Extension has stored locally via Chrome's developer tools

  • Delete: Clear all local data by clicking "Disconnect" in the Extension or uninstalling it

  • Opt-out: Disable auto-capture to prevent automatic event data collection

  • Data Export: Request an export of your Polar data via your account settings

  • Account Deletion: Request deletion of your Polar account and all associated data

11. Security

We implement appropriate technical and organizational measures to protect your data, including:

  • HTTPS encryption for all data transmission

  • Row-level security (RLS) for database isolation

  • Secure API key storage in Chrome's local storage

  • No server-side storage of your Luma credentials

12. GDPR Compliance

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including the right to access, rectify, port, and erase your data. To exercise these rights, contact us at the email below.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

14. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us:


Email: hoffmann@dercio.de

Website: polargtm.com