FeaturesPricingFAQTutorialStart Analysis
← Back to home

Privacy Policy

Last Updated: 01 February 2026

1. Introduction and Data Controller

This Privacy Policy governs the processing of personal data in connection with the use of the GetNearMe browser extension (the "Service"). This Policy is intended to comply with Regulation (EU) 2016/679 (GDPR) and with Directive 2002/58/EC (ePrivacy Directive) regarding access to and storage of information on user terminal equipment.

Data Controller: Antonio Scirica acting commercially under the trade name "GetNearMe" Email: as.scirica@gmail.com

2. Nature of Data Processing

To ensure data minimization and strictly respect third-party intellectual property rights, the Service operates primarily as a local, client-side utility.

  • Local Processing: The analysis of real estate properties is performed dynamically within the User's browser. The Service does not index, or reproduce third-party databases on its own servers to create a competing search engine.
  • No Data Transfer for Aggregation: Content visible on the User's screen is processed temporarily in the browser's volatile memory and is not transmitted to the Controller's servers for permanent storage or aggregation.
  • Property-related data processed locally by the Service primarily relates to real estate objects and locations and does not typically constitute personal data of identifiable natural persons within the meaning of Article 4 GDPR.

3. Categories of Data Processed

We process only the data strictly necessary to deliver the Service, categorized by storage location:

3.1. Server-Side Data (Account & Technical Logs)

Our backend infrastructure processes limited metadata required for account management and security:

  • Identity Data: Email address and User ID (authenticated via Supabase) to manage your account and subscription.
  • Transactional Data: Subscription status, credit balance, and payment identifiers processed securely by Stripe (we do not store full credit card numbers).
  • Technical Service Logs: Technical service validation events confirming that a requested operation was successfully executed (used strictly for credit deduction and debugging), without storing listing content or attributes.
  • Security & Retention: IP addresses and technical logs are retained only for the limited period strictly necessary to fulfill their specific purpose (security monitoring, debugging, and service validation) and are periodically deleted in accordance with internal retention policies to comply with the principle of Storage Limitation (Art. 5(1)(e) GDPR).

3.2. Client-Side Data (Local Device Only)

To display comparisons and contextual insights, the Service processes the following data exclusively on your device:

  • Temporary Session Data: The Extension utilizes the browser's Local Storage API (chrome.storage.local) to temporarily cache limited factual data necessary for analysis visible on the page required for the User's requested analysis. This data remains sandboxed within your browser and is not accessible to the Controller.

This local storage is technically necessary for the functioning of the Service, is not used for tracking or advertising purposes, and remains sandboxed within the User's browser.

3.3. Voluntary Marketing Data

Only if you explicitly consent via a separate checkbox, we process your email address and limited activity metrics (such as daily usage streaks) to administer the optional Daily Bonus system and to send the Newsletter.

4. Third-Party Processors and Data Recipients

  • Infrastructure and Payments: We utilize Supabase (EU) for database hosting and authentication services, and Stripe (Global) for secure PCI-DSS compliant payment processing.
  • Communications: We use Resend (USA) as our email delivery provider for sending transactional codes and, where consented, newsletters.
  • Maps and Routing: To calculate distances and travel times, the Service transmits approximate location coordinates to routing and mapping services.
  • Market Data & Valuations: Specific property location data may be cross-referenced with Public Market Data Sources to retrieve estimated market valuations.
  • Contextual Events & Activities: To display nearby activities, the Service queries Contextual Event & Activity Providers. These providers receive general location coordinates and dates to return relevant events; no User identity or personal browsing history is shared with them.
  • AI Processing: If the User voluntarily triggers the "Virtual Staging" feature, image URLs are transmitted transiently to AI Processing Providers solely for the generation of the requested content.

5. Legal Basis for Processing

In compliance with Article 6 of the GDPR, we process data based on the following grounds:

  • Performance of a Contract (Art. 6(1)(b)): For the core delivery of the analysis service, routing calculations, valuation estimates, account management, and processing payments.
  • Legitimate Interest (Art. 6(1)(f)): For ensuring the security of the Extension, preventing fraud (e.g., credit abuse), and maintaining platform integrity.
  • Explicit Consent (Art. 6(1)(a)): For optional features such as marketing communications, the Daily Bonus system, and AI-generated content.
  • Legal Obligation (Art. 6(1)(c)): For tax reporting and accounting compliance.

6. User Rights

Under the GDPR, you have the right to access your data, rectify inaccuracies, erase your account ("right to be forgotten"), and object to processing based on legitimate interest. You also have the right to data portability (Art. 20) and the right to lodge a complaint with a supervisory authority (Art. 77), such as the Garante per la protezione dei dati personali.

To exercise these rights, please contact: as.scirica@gmail.com.

7. Changes to this Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes via the Extension interface or email.