Privacy Policy

Effective Date: February 10, 2026  |  Last Updated: February 25, 2026

This Privacy Policy ("Policy") explains how Profit Guard ("Profit Guard", "we", "us", "our") collects, uses, discloses, and protects information when you access or use our browser extension and web application (the "Service").

By using the Service, you acknowledge that you have read and understood this Policy.

1) Who this Policy applies to

The Service is designed primarily for business users (B2B) in the logistics and trucking industry (e.g., owner-operators, fleet dispatchers, back-office teams). If you use the Service on behalf of a company, "you" includes that company.

2) Information we collect

2.1 Account and authentication information

We collect information needed to create and manage your account, such as:

• Email address
• Name (if provided)
• Account identifiers

If you sign in using Google OAuth, Google may share certain profile information with us (typically your email, name, and a unique identifier), depending on your Google settings and the permissions you grant.

2.2 Customer Data (content you submit)

We collect and process information you input, upload, or generate in the Service, including:

• Company/team profile information (if you add it)
• Truck and fleet configuration data (e.g., MPG, fixed costs, driver pay rates)
• Load calculation results and history

2.3 Payment and billing information

If you purchase a subscription or paid features, payments may be processed by Paddle acting as Merchant of Record. We generally receive limited billing metadata (e.g., plan, subscription status, dates, amounts, transaction identifiers). We do not store full payment card details; those are handled by Paddle and its payment processors.

2.4 Usage and device information

We may automatically collect:

• IP address
• Device/browser type, operating system, language
• Usage events (pages/features used, timestamps)
• Diagnostic logs (for security and reliability)

2.5 Cookies and similar technologies

We may use cookies/local storage/session storage and similar technologies for:

• Authentication and session management
• Security (fraud prevention, abuse detection)
• Preferences (e.g., settings)
• Performance and reliability

If we use analytics or marketing cookies, we will do so consistent with applicable law and will update this Policy as needed.

3) How we use information

We use collected information to:

• Provide and operate the Service (accounts, profit calculations, fleet management, dashboards)
• Authenticate users and secure the Service
• Process payments and manage subscriptions (through Paddle)
• Provide customer support
• Improve and maintain the Service (debugging, performance, feature improvements)
• Comply with legal obligations and enforce our terms
• Protect rights, safety, and integrity of the Service, users, and the public

4) How we share information

We do not sell your personal information as a business model. We may share information in these scenarios:

4.1 Service providers (processors / subprocessors)

We may share information with vendors that help us run the Service, such as:

• Hosting/infrastructure providers (e.g., Render)
• Authentication providers (e.g., Supabase Auth, Google OAuth if you choose it)
• Payment processing (Paddle as Merchant of Record)
• Email delivery providers (if used for transactional emails)
• Security/monitoring tools (if used)

These providers are permitted to process data only as necessary to provide their services to us.

4.2 Legal and safety

We may disclose information if we believe it is necessary to:

• Comply with law, regulations, court orders, or lawful requests
• Investigate and prevent fraud, abuse, or security incidents
• Protect the rights, property, and safety of Profit Guard, our users, or others

4.3 Business transfers

If we are involved in a merger, acquisition, financing, reorganization, or sale of assets, information may be transferred as part of that transaction, subject to appropriate safeguards.

5) Data location and international transfers

The Service is hosted and operates with infrastructure in the United States, including servers and processing via service providers such as Render. Because the Operator is located outside the U.S., and because vendors may operate globally, your data may be transferred to and processed in countries other than where you live. By using the Service, you understand that such transfers may occur.

6) Data retention

We retain information for as long as reasonably necessary to:

• Provide the Service and maintain accounts
• Meet legal, accounting, and compliance obligations
• Resolve disputes and enforce agreements
• Maintain security and prevent abuse

Retention periods can vary by data type. You are responsible for maintaining your own copies of critical documents and outputs if needed for your business processes.

7) Security

We use reasonable administrative, technical, and organizational measures designed to protect information. However, no system is perfectly secure. You are responsible for using strong credentials, safeguarding your email account used for login, and managing access within your organization.

8) Your choices and rights

Depending on your location and applicable law, you may have the right to:

• Access your personal information
• Correct inaccurate information
• Request deletion of certain information
• Obtain a copy/portability of certain information
• Object to certain processing (where applicable)

To make a request, contact i@shagahar.com. We may need to verify your identity and authority (especially for business accounts).

Marketing emails: If we send marketing emails, you can opt out using the unsubscribe link or by emailing us. Transactional/security messages may still be sent.

9) California privacy notice (CCPA/CPRA)

If you are a California resident and the law applies, you may have additional rights, including the right to know, delete, correct, and opt out of certain "sale" or "sharing" of personal information as defined by California law.

We do not "sell" personal information in the traditional sense. If we ever use technologies that may constitute "sharing" for cross-context behavioral advertising, we will provide required opt-out mechanisms and update this Policy.

10) Children

The Service is not intended for anyone under 18, and we do not knowingly collect personal information from children.

11) Third-party links and services

The Service may link to third-party websites or services. Their privacy practices are governed by their own policies, not this Policy.

12) Changes to this Policy

We may update this Policy from time to time. If we make material changes, we will update the "Last Updated" date and may provide additional notice as required by law. Continued use of the Service after changes take effect means you accept the updated Policy.

13) Contact

For privacy questions or requests: i@shagahar.com

Mailing address: Nukus Street 17, Apt. 24, Salar MFY, Mirobod District, Tashkent, Uzbekistan