Privacy Policy

Effective Date: January 14, 2026Last Updated: January 14, 2026

At Contextify, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our browser extension and web application (collectively, the “Service”).

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with our practices, please do not use our Service.

1. Information We Collect

We collect information that you provide directly to us, information we obtain automatically when you use our Service, and information from third-party sources.

1.1 Information You Provide

  • Account Information: When you create an account, we collect your email address and name. You may also authenticate using Google OAuth.
  • User-Created Content: Content you create within the Service, including personas, offerings, examples, constraints, context items, and knowledge bases.
  • Extracted Web Content: When you choose to add web pages or page elements to your context, we collect the URLs, page titles, and content you explicitly select. This data is only collected when you actively trigger the extraction.
  • Prompts and Generated Content: The prompts you submit and the AI-generated responses, which are stored to provide conversation history and improve your experience.
  • Payment Information: When you subscribe to a paid plan, payment information is collected and processed by Stripe. We do not store your full payment card details.
  • Communications: When you contact us for support or feedback, we collect the content of those communications.

1.2 Information Collected Automatically

  • Usage Data: Information about how you use our Service, including the features you access, the time and date of your visits, token consumption, and API usage patterns.
  • Device Information: Browser type and version, operating system, and other technical information about the device you use to access our Service.
  • Extension State: Information about your extension preferences, such as panel position, size, and enabled/disabled state.

1.3 Information from Third Parties

  • Authentication Providers: If you sign in using Google, we receive your email address and basic profile information from Google.
  • Payment Processor: Stripe provides us with transaction confirmations, subscription status, and limited payment information (last 4 digits of card, card brand).

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Provision: To operate, maintain, and provide the features and functionality of our Service, including generating AI-powered content based on your context.
  • Account Management: To create and manage your account, process payments, and communicate with you about your subscription.
  • Personalization: To remember your preferences, personas, and context data to provide a personalized experience.
  • Communication: To send you technical notices, updates, security alerts, and support messages.
  • Analytics: To understand how users interact with our Service and to improve our offerings.
  • Billing: To track usage for billing purposes and to enforce spending limits you set.
  • Security: To detect, prevent, and address technical issues, fraud, or security threats.
  • Legal Compliance: To comply with applicable laws, legal processes, and government requests.

3. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

3.1 Service Providers

We work with third-party service providers who process data on our behalf:

  • Firebase (Google Cloud): For authentication, database storage, and file storage. Data is stored in Google Cloud infrastructure.
  • Stripe: For payment processing. Stripe handles all payment card data in accordance with PCI-DSS standards.
  • OpenRouter & OpenAI: For AI content generation. Your prompts and context data are sent to these providers to generate responses. These providers have their own privacy policies governing the use of this data.

3.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, government agencies).

3.3 Business Transfers

If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any change in ownership or uses of your personal information.

3.4 With Your Consent

We may share your information with third parties when you have given us your explicit consent to do so.

4. AI Processing & Third-Party LLM Providers

Our Service uses artificial intelligence to generate content based on the context you provide. Here is how your data is processed:

  • Data Sent to LLM Providers: When you request content generation, we send your prompt, selected persona, offering, examples, constraints, and relevant context to OpenRouter or OpenAI.
  • No Training on Your Data: We do not use your prompts or generated content to train AI models. However, you should review the privacy policies of OpenRouter and OpenAI regarding their data practices.
  • Vector Stores: If you use knowledge bases, your documents are processed and stored as vector embeddings in OpenAI's vector store infrastructure.

5. Data Retention

We retain your information for as long as:

  • Your account remains active
  • As needed to provide you with the Service
  • As necessary to comply with our legal obligations, resolve disputes, and enforce agreements

When you delete your account, we will delete or anonymize your personal information within 30 days, unless retention is required by law or for legitimate business purposes. Usage records may be retained in anonymized form for analytics.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

  • All data is encrypted in transit using TLS/HTTPS
  • Authentication tokens are securely stored and automatically refreshed
  • Firebase provides encryption at rest for stored data
  • Payment data is handled by PCI-DSS compliant Stripe
  • Access to user data is restricted and logged
  • Regular security assessments and updates

Despite our efforts, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

7. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

7.1 Access and Portability

You can access most of your personal information directly through the Service. You may request a copy of your data in a portable format by contacting us.

7.2 Correction

You can update your account information and user-created content directly through the Service.

7.3 Deletion

You can delete individual items (personas, contexts, etc.) through the Service. To delete your entire account, contact us at support@contextify.pro.

7.4 Opt-Out

You can disable the extension at any time. You may unsubscribe from marketing communications using the link in our emails.

7.5 GDPR Rights (EEA Users)

If you are in the European Economic Area, you have additional rights including the right to object to processing, restrict processing, and lodge a complaint with a supervisory authority.

7.6 CCPA Rights (California Residents)

California residents have the right to know what personal information is collected, request deletion, and opt out of the sale of personal information. We do not sell personal information.

8. Browser Extension Specific Information

Our browser extension operates with the following permissions:

  • Active Tab: To extract content from the current page when you explicitly request it.
  • Storage: To save your preferences, authentication state, and cached data locally.
  • Identity: To enable Google Sign-In within the extension.

Important: The extension does not automatically collect or transmit any browsing data. Data is only collected when you explicitly trigger actions like adding a page to your context or generating content.

9. Cookies and Similar Technologies

We use cookies and similar technologies for:

  • Essential Cookies: Required for authentication and security.
  • Preference Cookies: To remember your settings and preferences.
  • Analytics: To understand how our Service is used and improve it.

You can control cookies through your browser settings. Disabling essential cookies may affect Service functionality.

10. Children's Privacy

Our Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately at privacy@contextify.pro.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have data protection laws different from your country. We use standard contractual clauses and other safeguards to ensure your data receives adequate protection.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the “Last Updated” date. For significant changes, we may also send you an email notification. Your continued use of the Service after any changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Contextify

Email: privacy@contextify.pro

Website: https://contextify.pro