[maxmorlocke]

There shouldn't be any reference to a subscription. Can you let me know where you saw one? We used to have this setup as a paid extension, but pivoted away as that business model didn't work as well as we'd have liked.

Re: privacy and data. You can certainly review the settings we request and our terms of service - we ask to run the extension on a number of travel sites we interact with. We only collect your search intent data, progress around searching, and other similar lifecycle events as your search to aid us in product development. That being said, our long term monetization strategy is to sell search intent data - not your personal or financial data, and definitely not showing ads.

[TheHideout]

Thanks. I saw it on the subdomain and page header bar on the privacy policy page.

[maxmorlocke]

I think I've gotten them all. Appreciate you bringing this to my attention!

[johnday]

There's another one when you go to uninstall the application on Chrome - it asks "were you able to subscribe?"

[wintermutestwin]

From https://subscribe.flightpenguin.com/privacy

>Signing up and Purchasing a Subscription. When you purchase a subscription to our Services, your credit card information, billing information, and any other financial information necessary to complete your purchase (“Payment Information”) is processed by our third-party payment processor, and we do not collect, store, or process your Payment Information. After you purchase a subscription to our Services, we will receive your email address from Stripe as confirmation of your subscription purchase. For more information, please see the “Payment Processing” section below.

>we automatically receive information about your interactions with them, such as the contents of your searches, the length of time you spend on a page, objects such as hyperlinks you click on, the airlines you prefer, and the dates and times of your visits.

>We and our third-party partners may collect information using cookies, pixel tags, or similar technologies. Our third-party partners, such as analytics and advertising partners, may use these technologies to collect information about your online activities over time and across different services.

>We may receive personal information about you from third parties such as the websites we send you to book your travel and combine it with other personal information we have about you.

>Vendors and Service Providers. We may share any personal information we receive with vendors and service providers retained in connection with the provision of our Services.

>We do not rent, sell, or share personal information about you with nonaffiliated companies for their direct marketing purposes unless we have your permission. *emphasis mine

>We may use analytics services such as Google Analytics and Sentry to collect and process certain analytics data. These services may also collect information about your use of other websites, apps, and online resources.

>We may transfer your personal information to service providers, advisors, potential transactional partners, or other third parties in connection with the consideration, negotiation, or completion of a corporate transaction in which we are acquired by or merged with another company or we sell, liquidate, or transfer all or a portion of our assets.

>We may also disclose your personal information with your permission.

>There is no accepted standard on how to respond to Do Not Track signals, and we do not respond to such signals.

While I recognize that most of this is standard practice among the data thieves, I thought it pertinent to call out your simplistic glossing over of your data thieving intent.

Hipmonk was a valuable service and one that I'd gladly pay for, but my data is worth way more than that.

BTW - You and I both know that if I specify "Do Not Track" then I don't want you to track anything about me.