Last updated: August 19, 2025

Privacy Policy

Everything you need to know about how we process your data

We treat your data as if it were our own, so we only access or share your data to provide you with good customer service. This requires us to track website behaviour, store cookies, and process your information.

Your data is used to:

  • Process your online payment(s)
  • Send you your license key(s) after purchase
  • Manage your license activations and seat usage
  • Provide secure access to the License Manager
  • Offer customer support
  • Send you product updates or promotions by email (if opted in)

Services We Use

We don't share any personally identifying information publicly or with third-parties, except when required to by law.

We default to processing your data anonymously, but this isn't possible for all the services we use. Exceptions of this are:

Cloudflare

We use Cloudflare's infrastructure to host our API services and store user data in Cloudflare D1 databases located in Western Europe. This includes user account information, license management data, and device activation records. Cloudflare processes and stores this data on our behalf.

Further Reading: Privacy Policy

Polar

We use Polar to process payments and manage license keys. Polar processes your contact and payment details, and we synchronize license information and customer data from Polar to provide license management services. Your contact details are accessible by us, but payment details are never disclosed to us by Polar.

Further Reading: Privacy Policy

Zoho Mail

We use Zoho Mail to host emails sent to @getchameleon.net.

Further Reading: GDPR Readiness

ZeptoMail

We use ZeptoMail (part of Zoho) to send login verification emails for the license manager.

Further Reading: GDPR Readiness

Sentry

We use Sentry for error monitoring and performance tracking on our API services. Sentry collects error reports, performance metrics, and limited request data to help us identify and fix issues. No personally identifiable information is intentionally sent to Sentry, though error reports may occasionally contain user-provided data that caused an error.

Further Reading: Privacy Policy

Cookies

We use cookies to provide essential functionality and secure access to our services:

License Manager Authentication

When you sign in to the License Manager, we set an authentication cookie to maintain your login session:

  • chameleon_token: A secure, HttpOnly cookie containing your encrypted authentication token with your email address (expires after 24 hours)

This cookie is essential for the License Manager to function and cannot be disabled while using the service.

Payment Processing

When you purchase a Chameleon license, Polar's embedded checkout widget on our site will set cookies for payment processing and analytics. Additionally, Stripe (Polar's payment processor) may set its own cookies.

You can manage cookie preferences through your browser settings. Note that blocking essential cookies may prevent you from accessing certain features of our services.

License Management Data

When you purchase and use Chameleon licenses, we collect and store the following information to provide license management services:

User Account Information

  • Email address: For account identification, login verification, and license delivery
  • Name: Associated with your purchase for license management and support
  • Polar customer ID: To synchronize your purchase and license data
  • Account timestamps: Registration date and last profile update

License Key Data

  • License keys: The actual license keys you've purchased
  • Product information: Which Chameleon products your licenses are for
  • Seat management: Number of allowed activations and current usage
  • License status: Whether licenses are active, expired, or cancelled
  • Expiration dates: When licenses expire (if applicable)

Device Activation Data

  • Machine identifiers: Hashed device identifiers for license activation tracking (raw hardware information never leaves your device)
  • Activation timestamps: When licenses were activated on specific devices
  • Validation records: Last time each activation was verified

Verification Codes

  • Email verification codes: Temporary codes sent for login verification
  • IP addresses: For security and abuse prevention during verification
  • Usage tracking: Whether codes have been used and when

Data retention

  • User account and license data is retained as long as you have active licenses or until you request deletion
  • Device activation data is retained to prevent license abuse and provide support
  • Verification codes expire after 10 minutes but records are kept for 90 days for security purposes

View or deleting your data

Under the law of GDPR, you always have the right to request the data we have about you.

In case you wish your data to be deleted from the services, we can't guarantee that you'll still be able to use Chameleon properly or whether we can be of any help if you request support.

To request viewing or deleting your data you can send an email to support@getchameleon.net.

Correction of data

If for any reason the data we have on you needs to be corrected you can send an email to support@getchameleon.net.

Questions?

Feel free to email us if you have any questions regarding the contents of this privacy policy. You can reach us on support@getchameleon.net.