Privacy Policy
Last Updated: January 2026
Quick Summary
What We Collect
- Email (Google sign-in)
- Name & avatar (Google)
- Usage statistics
- Payment info (via Stripe)
- Scan results (temporary)
- Document content (temporary, for conversion only)
What We DON'T Collect
- Passwords
- Browsing history
- Form data
- Personal documents (unless you upload to Document Converter)
- Financial account data
- Login credentials
What We Do
- Convert currencies
- Convert documents (original upload deleted after processing; outputs kept 12-48 hrs for download)
- Save to YOUR cloud
- Track usage limits
- Send service emails
What We DON'T Do
- Sell your data
- Access your other files without your action
- Track your browsing history
- Send spam
- Keep your documents permanently
Your privacy is important to us. This Privacy Policy explains how Currency.Wiki ("we," "our," or "us") collects, uses, discloses, and protects your information when you use our website and Chrome Extension (collectively, the "Service").
1. Information You Provide
Account Information
Email address, name, and profile picture when you sign in with Google.
Payment Information
If you subscribe to Pro, payment is processed by Stripe. We receive only the last 4 digits, card type, and expiration date for display purposes. We never store your full card number.
User Preferences
Your preferences (base currency, favorite currencies, language, theme, number format) are stored locally in your browser using cookies - not on our servers. This means your preferences stay on your device and are not synced across devices.
2. Information Collected Automatically
Extension Usage Data
Features used (converter, AI Smart Scan, in-page conversion), usage counts for plan limits, and error logs for debugging.
Technical Information
Browser type and version, extension version, operating system, and anonymous analytics (feature usage patterns).
API Usage Statistics
We collect anonymous, aggregated API usage data across all our platforms (Chrome Extension, WordPress plugin, web widget, Android app, iOS app, Shopify app). This includes: API call counts per platform, referring domain names (for embedded widgets), and timestamps. This data is used to monitor service performance, understand usage patterns, and improve our infrastructure. We do NOT include IP addresses, user identifiers, device IDs, or any personally identifiable information as part of aggregated API usage statistics.
3. Information We DO NOT Collect
We want to be crystal clear about what we never collect:
- Passwords or login credentials - We cannot see what you type in login forms
- Form data - We don't read any form inputs on any website
- Browsing history - We don't track which websites you visit
- Personal documents - We do not access files on your device or in your cloud storage unless you choose to upload a file to Document Converter, and we do not retain document content beyond the temporary processing/download window
- Financial account data - By default, the extension is designed to disable scanning features on many banking and financial sites. We do not automatically access account numbers, balances, or transaction history. However, if you temporarily unblock a site and manually start a scan, the visible page content you choose to scan (which may include transaction details) may be processed for currency conversion and export (e.g., HTML/CSV/TXT). We do not collect login credentials, and scan results are not stored on our servers by default unless you choose to export/save them.
4. How We Use Your Information
| Purpose | Data Used |
|---|---|
| Provide the Service | Account info, preferences |
| Process payments | Stripe payment data |
| Enforce plan limits | Usage counts |
| Improve the Service | Anonymized analytics |
| Communicate with you | Email address |
| Prevent abuse | IP address (for security/abuse prevention), usage patterns |
| Customer support | Account info, usage history |
5. AI Smart Scan Data Processing
When you use the AI Smart Scan feature:
- What we send: Relevant visible webpage content you choose to scan (such as product names, prices, and nearby context)
- What we DON'T send: Images, login forms, passwords (avoid scanning pages that contain sensitive personal information)
- Processing: Sent to Google's Gemini AI for analysis
- Storage: We do NOT store your scan results on our servers by default (unless you choose to export or save them)
- Your control: Results exist only in your browser until you close the tab, export them, or save them to cloud storage
Scan results are temporary. Export or save to cloud storage before closing, as we cannot recover them.
6. Document Converter Data Processing
When you use the Document Converter feature to convert PDFs and documents with currency values:
How It Works:
- 1 You upload a document (PDF or image)
- 2 Our servers extract text and identify currency values
- 3 Google's Gemini AI processes the content to detect and convert currencies
- 4 A converted document is generated with your target currency values
- 5 You download the converted document
Data Handling & Retention
We do NOT retain or store the actual content of your documents beyond the temporary processing and download window
What We Access:
- Document text content (for currency detection)
- File format and structure (for accurate conversion)
- Page count (for credit calculation)
What We Do NOT Access:
- We do NOT read documents for any purpose other than currency conversion
- We do NOT share document content with third parties (except Google AI for processing)
- We do NOT use your documents for AI training or model improvement
- We do NOT retain copies after the download window expires
Your Control
You have full control over your files: delete them immediately after download, or anytime before automatic expiration. Simply click the delete button in your conversion history to permanently remove files from our servers instantly.
Download your converted files before the expiration window. Once deleted, we cannot recover them.
GDPR & CCPA Compliance
Document Converter is designed to support GDPR and CCPA requirements where applicable:
- Data Minimization: We only process data necessary for currency conversion
- Storage Limitation: Strict retention periods with automatic deletion
- Right to Erasure: Delete files immediately after download or anytime before expiration; automatic deletion after 12-48 hours if not manually deleted
- Transparency: Clear disclosure of all data handling practices
- No Sale of Data: We never sell or share your document content
7. Information Sharing and Disclosure
We do NOT sell your personal information. We share information only in these limited circumstances:
| Provider | Purpose | Data Shared |
|---|---|---|
| Stripe | Payment processing | Email, payment method |
| Google Cloud | AI processing (Gemini) | Webpage text for scans; document content for conversions (temporary, for processing only) |
| Cloud hosting providers | Infrastructure hosting | Service data processed and stored on our servers (including temporary files and outputs), encrypted in transit |
8. Cloud Storage Integration
Currency.Wiki allows you to save Smart Scan exports and converted document outputs to cloud storage services (Google Drive, Dropbox, Box).
| Service | Scope | What This Means |
|---|---|---|
| Google Drive | drive.file |
We can ONLY access files that Currency.Wiki creates. We CANNOT see your other files. |
| Dropbox | files.content.write |
We can ONLY write to the Apps/Currency.Wiki folder. We CANNOT see your other files. |
| Box | App Folder access |
We can ONLY access the Currency.Wiki folder. We CANNOT see your other files. |
What We CANNOT Do:
- Cannot access your other files - permissions are limited to our app folder only
- Cannot browse your cloud storage - we do not request permission to scan your entire account
- Cannot share your files - we do not share your cloud files with anyone
- Cannot delete your files automatically - you control deletion in your cloud provider
- Cannot access without your action - we only access when YOU click Save or connect the integration
9. Data Security
We implement industry-standard security measures:
- Encryption in transit: Data transmitted using TLS
- Encryption at rest: Sensitive data (tokens, credentials) encrypted at rest
- Access controls: Strict employee access to user data
- Regular audits: Security practices reviewed periodically
- OAuth tokens are encrypted, automatically refreshed, and deleted when you disconnect
On many banking and financial sites, our extension is designed to automatically disable, show a grey icon, and avoid running scanning features by default. Users can temporarily unblock a site for a selected time window, and it re-blocks automatically. You can also add sites to your personal blocklist at any time.
10. Data Retention
| Data Type | Retention Period |
|---|---|
| Account information | Until account deletion |
| Usage statistics | 12 months (anonymized after) |
| Payment records | 7 years (or as required by law) |
| Cloud storage tokens | Until disconnection |
| Error logs | 30 days |
| AI scan results | Not stored on our servers by default (temporary only) |
| Document Converter - Original files | Deleted immediately after processing |
| Document Converter - Converted files | 12 hours (Free) / 48 hours (Pro) |
| Document Converter - Metadata | 90 days |
| API usage statistics | 12 months (aggregated, anonymous) |
| Email preferences | Until account deletion |
| Marketing opt-in records | Until account deletion (for compliance) |
11. Your Rights and Choices
You have control over your data:
Access
View your account data in the Dashboard or request a copy
Correction
Update your preferences anytime in settings
Deletion
Delete your account via Dashboard > Privacy > Delete Account
Opt-Out
Use without signing in, disable features, don't connect cloud storage
GDPR Rights (EU Users)
If you're in the EU, you have additional rights including: right to erasure, data portability, restrict processing, and object to processing. Contact [email protected] to exercise these rights. We respond within 30 days.
CCPA Rights (California Users)
If you're a California resident, you have the right to know what we collect, delete your data, opt-out of sale (we don't sell data), and non-discrimination.
12. SMS/Text Message Communications
If you contact Currency.Wiki via SMS at (858) 240-8584, you may receive automated text message responses. By texting us, you consent to receive reply messages.
Message Types
We send SMS messages only in response to your inquiries or to provide customer support information you have requested.
Message Frequency
Message frequency varies based on your interactions with our support line.
Opt-Out
You may opt out of receiving SMS messages at any time by replying STOP to any message. You will receive a confirmation message and no further messages will be sent.
Help
Reply HELP for assistance or contact [email protected].
Carrier Disclaimer
Message and data rates may apply. Check with your mobile carrier for details.
No Sharing of Mobile Data
Your mobile phone number, SMS content, and opt-in data will NOT be shared with third parties or affiliates for marketing or promotional purposes. We only use this information to respond to your support inquiries.
14. Email Communications & Preferences
We use your email address to communicate with you about the Service. You have full control over which emails you receive.
Email Data & Privacy
15. Cookie Policy
The Chrome Extension does not use cookies. Our website uses:
| Type | Examples | Purpose |
|---|---|---|
| Essential | session, csrf_token |
Required for site functionality |
| Functional | theme, language, base_currency |
Remember your preferences |
| Analytics | _ga (Google Analytics) |
Understand usage (optional, anonymized) |
Manage preferences via the cookie banner or your browser settings.
16. Children's Privacy
Currency.Wiki is not intended for children under the age of 13 (or the applicable minimum age in your jurisdiction, such as 16 in the EU). Account creation requires signing in with a Google account, which has its own age requirements. We do not collect personal information from children.
17. International Data Transfers
Your data may be transferred to and processed in the United States. We ensure appropriate safeguards including Standard Contractual Clauses (SCCs) for EU data transfers and data processing agreements with all service providers.
18. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice in the extension and on our website. Your continued use after changes constitutes acceptance.
19. Contact Us
For privacy-related questions or concerns:
Mailing Address
CurrencyWiki Technologies LLC 122 15th St #431 Del Mar, CA 92014 United States
