Privacy Policy for STONK GMV
1. Overview
STONK GMV is a Chrome extension for TikTok Shop sellers and operators. It helps users view, synchronize, and manage advertising, shop, product, live, and reporting data from pages that the user intentionally opens and uses with the extension.
This policy explains what data the extension handles, how that data is used, where it may be stored, and how users can request access or deletion.
2. Data the Extension Handles
Depending on which features the user chooses to use, STONK GMV may handle the following data:
- Authentication information: STONK login session token, server-issued account token, and TikTok session cookies needed to perform user-requested seller, ads, sync, and report actions.
- Website content and page data: campaign names, product names, product IDs, shop IDs, seller IDs, advertiser IDs, video IDs, live room IDs, dashboard metrics, and report data visible on supported TikTok Shop, TikTok Ads, and TikTok pages.
- Advertising and shop performance data: ad spend, revenue, ROI, order count, CPO, balance, credit, click/view data, live metrics, and similar operational statistics.
- User settings: saved shop configuration, sync server URL, alert settings, report settings, theme preference, and feature toggles.
- Optional integration data: Telegram bot settings, Google Apps Script or Google Sheet webhook URLs, Gemini API key entered by the user, and local relay URLs if configured by the user.
- Downloaded media metadata: video IDs, creator names, product labels, and download status when the user uses the video download feature.
STONK GMV does not intentionally collect government IDs, credit card numbers, bank account numbers, health information, or passwords. Users should not enter such information into the extension.
3. How Data Is Used
Data is used only to provide or improve user-facing STONK GMV features, including:
- displaying dashboards, performance reports, campaign summaries, and live metrics;
- creating, editing, syncing, or updating campaigns when requested by the user;
- saving local preferences and shop/account configuration;
- synchronizing selected shop, campaign, cookie, and report data with the STONK sync server when the user enables Cloud Sync or server backup features;
- sending optional alerts through Telegram, Google Apps Script, Google Sheets, or a user-configured local relay service;
- downloading or organizing TikTok video content when the user starts that action;
- debugging, fraud prevention, abuse prevention, and service reliability.
4. Storage and Retention
- Local browser storage: preferences, cached shop data, cookies, and recent operational data may be stored in Chrome storage on the user's device.
- STONK sync server: account, shop, cookie, and report data may be sent to the STONK server only for login, Cloud Sync, account access, backup, and user-requested automation features.
- Retention: data is retained only as long as needed to provide the service, maintain user accounts, comply with legal obligations, or support security and abuse prevention.
- Deletion: users can delete local data in the extension and can delete their own cloud shop data from the extension where supported, or request deletion by contacting privacy@stonkagency.vn.
5. Sharing and Third Parties
STONK GMV does not sell user data and does not use user data for personalized advertising.
Data may be shared only in the following limited cases:
- TikTok, TikTok Shop, and TikTok Ads: requests are made to the platforms the user is already using in order to provide seller, ads, product, and live features.
- STONK servers: for login, license, Cloud Sync, account management, and user-requested data synchronization.
- Optional user-configured services: Telegram, Google Apps Script or Google Sheets, Google Gemini, Tikwm, or a local relay server, only when the related feature is configured or used by the user.
- Service providers: hosting, security, and infrastructure providers may process data only as needed to operate the service.
- Legal and security reasons: where required by law or necessary to prevent abuse, fraud, or security incidents.
6. Limited Use Commitment
STONK GMV limits the use of user data to providing and improving its single purpose. User data is not sold, transferred to advertising platforms or data brokers, or used to determine creditworthiness. Human access to user data is limited to cases where the user gives permission, where access is needed for security or support, or where required by law.
If STONK GMV receives information from Google APIs through user-configured Google integrations, its use and transfer of that information will adhere to the Chrome Web Store User Data Policy, including the Limited Use requirements.
7. Security
STONK GMV uses reasonable technical and organizational safeguards, including HTTPS transmission for production servers, access controls, server-side authentication tokens, and scoped Chrome extension permissions. No method of transmission or storage is completely secure, so users should keep their browser profile, TikTok accounts, and STONK account credentials protected.
8. User Choices and Rights
- Users can disable optional features such as Cloud Sync, Telegram alerts, Google integrations, Gemini, local relay, or video download features.
- Users can clear local extension data by logging out, clearing Chrome extension storage, or uninstalling the extension.
- Users can request access, correction, export, or deletion of server-side data by contacting privacy@stonkagency.vn.
9. Children
STONK GMV is intended for business users and is not directed to children under 13. We do not knowingly collect personal information from children.
10. Changes to This Policy
We may update this policy when the extension, legal requirements, or data practices change. The latest version will be published at the privacy policy URL provided in the Chrome Web Store listing.
11. Contact
For privacy questions, data access, or deletion requests, contact: privacy@stonkagency.vn.