Last Updated December 12, 2021
The information we gather or process is used solely for core functionality of Homey and to improve the quality and security of our service.
Your name, email, account settings, and extension data are transferred and stored securely, solely for your usage within our extension and not shared with any other third parties, except as specified in this policy.
To upgrade to Homey Premium, your credit card number, credit card expiration date, security code, name, country and postal code are required. All payment processing is done through a GDPR compliant third party (Paddle, Inc.). When paying by a credit card, the card details do not pass through our servers, they are sent directly to Paddle and are stored securely, as per their Privacy and Security policies.
To perform requested changes to or inquiries about your Homey account (cancelling, refunding, or changing payment details), authorized members of Homey’s support team could potentially view payment-related information contained in Paddle’s databases (this is limited to billing name, billing address, postal code, the last four digits of credit card(s), and credit card expiry date(s)) while accessing subscription information via Paddle’s payment dashboard. This information will only be accessed upon your request.
Chrome Extension API used within Chrome Add-ons and Edge Extension API used within Edge Add-ons have fine-grained permission levels that are enforced by the Web Browser, restricting information that our extension has access to within your Browser. The Homey extension can only access specific information that you have explicitly granted permission for.
Additional optional permissions may be requested when you enable specific features. When you enable a feature that requests an optional permission, your Web Browser will make it clear what permission(s) are being requested. The feature will be accessible once you choose to allow the requested permission(s).
|Permission||Feature||Where it is used||Optional|
|Bookmarks||Bookmarks Bar, Search Panel||Used only within the Extension to display a Bookmarks Bar and search bookmarks via search panel. This is not sent or stored elsewhere.||No|
|Tabs||App||Used only within the Extension to show extension in new tab and open bookmarks in same/new tab||No|
|History||Search Panel||Used only within the Extension to sort bookmarks by popularity in search panel.||No|
|Top Sites||Add Bookmaks Modal||Used only within the Extension to suggest to add popular sites to bookmark panel.||No|
|Geolocation||Weather Widget||Location could be sent to our weather provider API to determine your closest weather station for request actual weather information.||Yes|
To improve the content, features and overall experience of the extension, we gather and log data on how our users access and use Homey. For example, we may log actions like clicking on a search button, updating a wallpaper, or completing a note (not the content of the note, just the action of completing it).
Some of this usage data is sent to Google Analytics. In these cases, we do not send any identifying information that could be correlated with your account. We also make use of their IP anonymization feature to prevent your IP from being associated with your usage data.
|DigitalOcean||DigitalOcean powers our core Cloud infrastructure (providing the necessary hardware, software, networking, storage, and other related technology).||Privacy|
|Paddle||Credit card data, payments and renewals are processed by Paddle.||Privacy|
|Google Analytics||Google Analytics is an industry standard third-party analytics service that we use to better understand the usage and performance of our service(s). The information is anonymized so that it is not tied to your IP address.||Privacy|
|Google Fonts||Google Fonts is a library of free licensed font families that we use to preload fonts. A call is made from your IP address to request fonts.||Privacy|
|images.weserv.nl||An image cache & resize service we use to cache bookmark favicons. Your bookmarks URL's sent to images.weserv.nl. A call is made from your IP address to request cached favicon.||Privacy|
|flixel.com||Some photo/media files are retrieved from flixel. A request is made from your IP address to download media files.||Privacy|
|openweathermap.org||Openweathermap we use to request weather data. Your city id sent to openweathermap. A request is made from your IP address to get weather information.||Privacy|
|quotes.rest||quotes.rest we use to request quotes. A request is made from your IP address to get random quote.||Privacy|
Data security is a priority at all times.
All data communication in transit to and from our servers is secured using HTTPS/TLS. All Homey domains have HTTP Strict Transport Security (HSTS) enabled and are in the HSTS Preload list on the major browsers supporting this feature.
Email address: firstname.lastname@example.org