Login

Privacy Policy

Last Updated: February 6, 2026

1. Introduction

This Privacy Policy describes how Ondefa ("we," "us," or "our") collects, uses, stores, and protects information when you use the Ondefa Chrome Extension, website, dashboard, and related services (collectively, the "Service"). We are committed to protecting your privacy and handling your data responsibly. By using the Service, you consent to the practices described in this policy.

2. Information We Collect

We collect the following categories of information:

  • Account Information: When you register, we collect your email address and basic profile information to create and manage your account.
  • Payment Information: Payment transactions are processed by third-party payment providers (e.g., Stripe). We receive transaction confirmations and credit balance updates but do not store your full credit card number or banking details.
  • LinkedIn Profile Data: When you visit a LinkedIn profile page while using the extension, the extension reads publicly visible information on that page (such as name, job title, and company) to facilitate contact lookups. This data is collected only upon your explicit action (clicking the lookup button).
  • Contact Lookup Results: Email addresses and phone numbers returned by our data providers are stored in your personal dashboard for your reference.
  • Usage Data: We may collect anonymized usage statistics (such as feature usage frequency and error logs) to improve the Service. This data does not include personally identifiable information.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service, including rendering the inquiry card on LinkedIn profile pages.
  • Process contact lookups and deliver results to your dashboard.
  • Manage your account, credit balance, and transaction history.
  • Communicate with you about your account, service updates, and support inquiries.
  • Detect, prevent, and address technical issues, fraud, or abuse.
  • Analyze usage patterns to improve the Service (using anonymized data only).

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

4. Chrome Extension Permissions

The Ondefa Chrome Extension requests the following browser permissions:

  • Content Scripts (linkedin.com): To inject the Ondefa inquiry card UI into LinkedIn profile pages. The extension does not modify LinkedIn content or interact with LinkedIn's APIs.
  • Storage: To store your authentication token and user preferences locally in the browser.
  • Network Requests: To communicate with Ondefa's servers for contact lookups, authentication, and credit management.

The extension does not access your browsing history, bookmarks, downloads, or any data outside of LinkedIn profile pages. It does not run in the background when not on LinkedIn.

5. Data Storage and Security

We take the security of your data seriously. All data transmitted between the extension, your browser, and our servers is encrypted using HTTPS/TLS. We implement industry-standard security measures including:

  • Encrypted data storage at rest.
  • Secure authentication with token-based sessions.
  • Regular security audits and vulnerability assessments.
  • Access controls limiting employee access to user data on a need-to-know basis.

6. Data Sharing

We may share your information only in the following circumstances:

  • Service Providers: With trusted third-party service providers who assist us in operating the Service (e.g., payment processors, cloud hosting), subject to confidentiality obligations.
  • Legal Requirements: When required by law, regulation, legal process, or governmental request.
  • Protection of Rights: To protect the rights, property, or safety of Ondefa, our users, or others.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, in which case your data would remain subject to this Privacy Policy.

7. Data Retention

We retain your account data and contact lookup history for as long as your account is active. If you delete your account, we will remove your personal data from our systems within 30 days, except where retention is required by law or for legitimate business purposes (such as fraud prevention or financial record-keeping).

8. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data and account.
  • Data Portability: Request your data in a structured, commonly used format.
  • Objection: Object to certain processing of your data.

To exercise any of these rights, please contact us at support@ondefa.com . We will respond to your request within 30 days.

9. Cookies and Tracking

Our website may use essential cookies for authentication and session management. We do not use third-party advertising cookies or tracking pixels. The Chrome Extension does not set or read cookies.

10. Children's Privacy

The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child under 18, we will take steps to delete it promptly.

11. Compliance

Ondefa complies with the Google Chrome Web Store Developer Program Policies and the Chrome Web Store User Data Policy. Our data collection is limited to what is necessary for the extension's functionality and is clearly disclosed to users. We also strive to comply with applicable data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last Updated" date at the top of this page and notify you through the Service or via email. Your continued use of the Service after such changes constitutes your acceptance of the updated policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at support@ondefa.com .