Privacy Policy

Effective Date: January 1, 2025
Last Updated: January 1, 2025

Introduction

Sniplet ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Chrome extension and related services.

Information We Collect

Information You Provide

  • Account Information: Email address and encrypted password when you create an account
  • Snippet Content: Text, URLs, and metadata of web content you choose to save
  • Folder Organization: Names and structure of folders you create
  • Tags: Custom tags you assign to snippets

Information Automatically Collected

  • Usage Analytics: Basic usage statistics (number of snippets saved, features used)
  • Technical Data: Browser version, extension version, error logs
  • Sync Data: Timestamps and device identifiers for cross-device synchronization

Information We Do NOT Collect

  • Browsing History: We do not track which websites you visit
  • Personal Data from Websites: We only save content you explicitly choose to capture
  • Sensitive Information: We do not access passwords, payment info, or personal identifiers
  • Marketing Data: We do not use tracking pixels or advertising cookies

How We Use Your Information

Primary Uses

  • Core Functionality: Store, organize, and sync your saved snippets
  • AI Enhancement: Process your snippets with Google Gemini AI for summaries and tags
  • Search: Enable you to find your content using natural language queries
  • Account Management: Authenticate users and maintain account security

AI Processing

  • Google Gemini API: Your snippet content is sent to Google's Gemini AI service for generating summaries, extracting tags, enabling semantic search, and finding similar content
  • Data Minimization: Only snippet content is sent to AI services, never personal information
  • No Training: Your data is not used to train AI models

Data Storage and Security

Storage Infrastructure

  • Cloudflare: All data stored on Cloudflare's secure infrastructure
  • Encryption: Data encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Strict access controls and authentication required
  • Backups: Regular encrypted backups for data protection

Security Measures

  • JWT Authentication: Secure token-based authentication
  • Password Security: Passwords hashed using industry-standard algorithms
  • API Security: All API endpoints protected with authentication
  • Regular Updates: Security patches applied promptly

Data Sharing and Disclosure

We Do NOT Share Your Data With

  • Third-party advertisers: We do not sell or share data for advertising
  • Marketing companies: No data sharing for marketing purposes
  • Data brokers: We do not sell user data to any third parties

Limited Disclosure Scenarios

  • Google Gemini API: Snippet content only (for AI processing)
  • Legal Requirements: If required by law or legal process
  • Service Providers: Essential infrastructure providers (Cloudflare) under strict contracts
  • Public Snippets: Only content you explicitly choose to make public

Your Privacy Rights

Control Over Your Data

  • Access: View all your stored snippets and account information
  • Modification: Edit or update your snippets and account details
  • Deletion: Delete individual snippets or your entire account
  • Export: Download all your data in standard formats
  • Privacy Settings: Control which snippets are public or private

Account Management

  • Data Portability: Export your data at any time
  • Account Deletion: Permanently delete your account and all associated data
  • Sync Control: Enable or disable cross-device synchronization
  • Local Use: Use the extension without an account (local storage only)

Data Retention

Active Accounts

  • Account Data: Retained while your account is active
  • Snippet Data: Retained until you delete snippets or your account
  • Usage Logs: Retained for 90 days for troubleshooting

Deleted Accounts

  • Complete Deletion: All data permanently deleted within 30 days
  • Backup Removal: Data removed from backups within 90 days
  • No Retention: No personal data retained after account deletion

International Data Transfers

Your data may be stored and processed in data centers operated by Cloudflare globally. All data transfers comply with applicable privacy laws and are protected by appropriate safeguards.

Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of any material changes by:

  • Email Notification: Sent to your registered email address
  • Extension Notice: Alert within the extension interface
  • Website Notice: Posted on our website

Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

GDPR Rights (EU Users)

If you are in the European Union, you have additional rights including:

  • Right to Access: Obtain a copy of your personal data
  • Right to Rectification: Correct inaccurate personal data
  • Right to Erasure: Request deletion of your personal data
  • Right to Portability: Receive your data in a machine-readable format
  • Right to Object: Object to processing of your personal data
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at [email protected].

Last Updated: January 1, 2025

This policy is effective immediately and governs your use of Sniplet from the date of installation or account creation.