Privacy Policy

Overview

Unbubble News is a fact-checking and context tool. Users submit a URL to be analyzed, and the generated report can be saved to their account and shared via a link. The service is available via our website (unbubble.news) and our browser extension.

Browser extension

The Unbubble News browser extension allows you to analyze articles directly from your browser. This section describes the specific data practices of the extension.

• Authentication tokens: when you connect your Unbubble News account, the extension stores an authentication token locally in your browser (using the browser's storage API). This token is used to authenticate requests to our servers. The token is never shared with third parties.

• Page content extraction: when you explicitly request an analysis (by clicking the extension icon or using the context menu), the extension extracts the article content from the current page and sends it to our servers for analysis. We only access page content when you explicitly request it.

• Language preferences: your preferred language setting is stored locally in your browser.

The extension requires certain browser permissions (activeTab, scripting, storage, contextMenus) solely to provide its functionality. These permissions are used only when you explicitly interact with the extension.

Data controller

Carlo Martinucci
Via Fulvio Testi 1, 35125 Padova (PD) - Italy
Email: legal@unbubble.news

What data we collect and process

• Authentication / account data: when you sign in with Google, we receive and store your email address, name, profile image, and provider identifiers to create and manage your account.

• Report input data: the URL you submit to be analyzed. When using the browser extension, this may also include the article content extracted from the page you choose to analyze.

• Page metadata: we may fetch the target URL to extract basic publicly available metadata (e.g., Open Graph title/description/image/site name) to improve presentation and context.

• Generated report data: the report output (e.g., summary, key facts with verdicts, contextual points, viewpoints, language) plus operational metadata (report ID, timestamps, status).

• Issue reports and messages: if you contact us or report a problem, we process the content you submit (e.g., name, email, message) and any details you provide about the report or URL.

• Technical identifiers & usage analytics: we set a first-party cookie unbubble_visitor_id (random UUID) and store limited usage events (e.g., page views, share clicks, clicks to the original source, and some form submissions).

Please do not include sensitive personal data in URLs or messages you send us. We do not intentionally collect special categories of personal data.

How we use data (purposes) and legal bases

• Provide the service (contract): to generate reports, display them, and save them to your account.

• Account management (contract / legitimate interests): to authenticate you and maintain your profile and access.

• Security and abuse prevention (legitimate interests): to protect the service and users.

• Product analytics and improvements (legitimate interests): to understand usage patterns and improve reliability and UX.

• Support and issue handling (legitimate interests / contract): to respond to messages and improve report quality.

• Legal obligations (legal obligation): to comply with applicable laws and requests.

Cookies & analytics

We use a first-party cookie to support basic analytics and security:

• unbubble_visitor_id (first-party, 1 year): stores a random UUID used to recognize a browser across visits. It does not store your name or email.

We do not use third-party advertising cookies. Usage analytics are stored in our own database. When you are signed in, we may log your account email together with the visitor identifier to understand usage and performance (e.g., from first visit to sign-in).

Sharing, public links

Reports can be shared via a link. Anyone with the link may be able to access the report. If you do not want a report to be shared, do not distribute the link.

Children’s privacy

The service is not intended for children under 16. We do not knowingly collect personal data from children under 16. If you believe a child under 16 has provided personal data to us, please contact us at legal@unbubble.news and we will take steps to delete it.

Service providers (processors) and transfers

• Google (Firebase / Google Cloud): provides authentication and database hosting.

• OpenAI: used to generate reports. We send the submitted URL and (when available) relevant page metadata/content needed to generate the analysis. The model may use web search to verify facts and retrieve sources. OpenAI acts as a data processor under contractual terms restricting use of data for training.

These providers may process data in countries outside your country of residence. Where applicable, we rely on contractual safeguards (such as standard contractual clauses) and provider security measures. You may request a copy of applicable safeguards by contacting us.

Retention

• Account data: retained for as long as needed to provide the service, or until you request deletion (subject to legal obligations).

• Saved reports: retained so you can access them in your account (and potentially via any shared link).

• Analytics: typically retained no longer than the visitor identifier lifetime (1 year), unless needed longer for security or legal reasons.

• Messages: retained as long as needed to respond and improve the service.

Your rights

If you are in the EEA/UK, you may have rights under GDPR (Arts. 15–22), including:

• access to your personal data;
• rectification of inaccurate data;
• erasure (where applicable);
• restriction of processing;
• objection to processing based on legitimate interests;
• data portability (where applicable);
• withdrawal of consent (where processing is based on consent);
• lodging a complaint with your supervisory authority.

How to contact us

Email legal@unbubble.news describing your request. We may ask for information to verify your identity. We aim to respond within 30 days where required.

Chrome Web Store compliance

Our use of information received from Google APIs, including through the browser extension, adheres to the Chrome Web Store User Data Policy, including the Limited Use requirements. We only use the data necessary to provide and improve the Unbubble News service. We do not sell user data, use it for advertising purposes, or share it with third parties except as described in this policy.

Changes to this policy

We may update this policy to reflect changes to the product or legal requirements. We will publish updates on this page and change the "Last updated" date.