Privacy policy
Last updated: 18 May 2026
This policy covers the Price Goblin website (pricegoblin.app, pricehammer.app) and the Price Goblin browser extension that complements it. We’ve kept it short on purpose: the products collect almost nothing.
What the website collects
- Standard server logs (IP, user-agent, request URL) for security and debugging. Retained for up to 30 days.
- If you sign in: your email, any name you set, and the lists you create. Stored in our database (Supabase Postgres) and used only to render your account on the site.
- Affiliate redirect attribution — when you click out to a retailer via Price Goblin, the retailer’s own affiliate cookie is set in your browser by them, not us. We don’t see what you do on retailer sites.
- Google Analytics 4 / Google Ads uses Consent Mode. Until you accept optional cookies, Google receives denied consent signals and no optional analytics or advertising cookies are stored. If you accept, we record page views and product events such as searches, filters, product views, and retailer click-outs. Search events include the search term you typed so we can understand what visitors are looking for.
We do not sell or share account data with third parties. We may use Google Ads to understand which campaigns bring visitors who engage with Price Goblin.
What the Price Goblin extension does
When you click Send to baskets on Price Goblin, the extension opens a tab for each retailer in your list and adds the items you selected to that retailer’s native shopping cart. You then review each tab and check out at each retailer normally — the extension never sees your payment details, billing address, or retailer login credentials.
The extension only runs on the specific retailer sites declared in its manifest (currently 18 UK Warhammer / tabletop retailers) plus the Price Goblin site itself. It cannot read or alter pages on any other site.
What the extension collects
- Anonymous adapter-health telemetry. When an add succeeds or fails on a retailer, we send the retailer ID, the platform name (e.g. “shopify”), the failure reason if any (e.g. “out_of_stock”), and the extension version. This lets us notice when a retailer changes their site and our extension stops working on it.
- What we do NOT collect: the products in your basket, prices, your retailer accounts, browsing history outside the retailer pages we declare, payment information, or any personally identifying data.
Local browser storage
The extension uses your browser’s local extension storage (chrome.storage.local) to remember the most recent orchestration job state — so if you close and reopen its popup, you can still see what happened. This data stays on your device and is never sent to a server.
Third-party services we use
- Supabase — hosts the website’s database (account info, lists, public catalog).
- Vercel — hosts the website itself.
- Cloudflare — caches and protects the website.
- Google Analytics / Google Ads — analytics and advertising measurement using Consent Mode v2. Optional cookies and detailed product/search events are only enabled after you accept.
These providers see standard request metadata (IP, user-agent) for infrastructure purposes. They do not receive any data the website wouldn’t otherwise process.
Your rights
If you have an account, you can delete it at any time from the Account page; this removes your stored email, name, and lists from our database. Server logs older than 30 days are deleted automatically. The extension’s telemetry is anonymous — there is no per-user record to delete.
Contact
Questions or a data-deletion request: email privacy@pricegoblin.app.
We’ll update this page if our data practices change. Material changes will also be announced via a notice on the site.
