# Privacy Policy - Markit Browser Extension **Last Updated:** December 2024 ## Overview Markit is a bookmark management extension that helps you save, organize, and discover your bookmarks with AI-powered features. This privacy policy explains how we collect, use, and protect your data when you use the Markit browser extension. ## Information We Collect ### 1. Authentication Data - **Google Account Information**: When you log in through Google OAuth, we receive your email address, name, and profile picture - **Authentication Tokens**: We store secure tokens to maintain your login session - **Purpose**: To identify you and sync your bookmarks across devices ### 2. Bookmark Data - **URLs and Titles**: Web addresses and page titles of bookmarks you save - **Content Summaries**: AI-generated summaries of webpage content - **Tags and Notes**: User-created tags and personal notes - **Folder Organization**: How you organize your bookmarks into folders - **Purpose**: To provide bookmark management and AI-powered features ### 3. Usage Analytics - **Feature Usage**: Which features you use (search, folders, AI analysis) - **Performance Data**: Loading times and error rates - **Device Information**: Browser type and extension version - **Purpose**: To improve the extension and fix bugs ### 4. AI Processing Data - **Webpage Content**: Text content from pages you bookmark (temporarily processed) - **Search Queries**: Your search terms for semantic search functionality - **Purpose**: To generate summaries, tags, and provide intelligent search ## How We Use Your Information ### Core Functionality - Store and sync your bookmarks across devices - Generate AI-powered summaries and tags - Provide semantic search capabilities - Organize content with folders and categories ### Service Improvement - Analyze usage patterns to improve features - Monitor performance and fix technical issues - Develop new AI-powered capabilities ### Communication - Send important service updates - Notify about new features (optional) - Respond to support requests ## Data Storage and Security ### Storage Location - **User Data**: Stored securely in Supabase (PostgreSQL database) - **Authentication**: Managed through Supabase Auth with industry-standard security - **AI Processing**: Temporarily processed through OpenAI API (data not retained by OpenAI) ### Security Measures - **Encryption**: All data encrypted in transit and at rest - **Access Control**: Strict user-level data isolation - **Authentication**: Secure OAuth 2.0 implementation - **Regular Audits**: Ongoing security monitoring and updates ### Data Retention - **Active Accounts**: Data retained while your account is active - **Inactive Accounts**: Data may be deleted after 2 years of inactivity - **Deleted Accounts**: All user data permanently deleted within 30 days ## Third-Party Services ### Google OAuth - **Purpose**: Secure authentication - **Data Shared**: Email, name, profile picture - **Privacy Policy**: [Google Privacy Policy](https://policies.google.com/privacy) ### OpenAI API - **Purpose**: AI content analysis and summarization - **Data Shared**: Webpage content (temporarily, not stored by OpenAI) - **Privacy Policy**: [OpenAI Privacy Policy](https://openai.com/privacy/) ### Supabase - **Purpose**: Database and authentication services - **Data Shared**: All user data (securely stored) - **Privacy Policy**: [Supabase Privacy Policy](https://supabase.com/privacy) ## Your Rights and Choices ### Data Access - View all your stored data through the Markit dashboard - Export your bookmarks and associated data ### Data Control - Edit or delete individual bookmarks - Modify tags, notes, and folder organization - Control AI feature usage through settings ### Account Management - Delete your account and all associated data - Revoke extension permissions at any time - Disable specific features (AI analysis, analytics) ### Opt-Out Options - Disable usage analytics collection - Turn off AI-powered features - Limit data processing to essential functions only ## Permissions Explained ### Required Permissions - **Active Tab**: To read page titles and URLs when you save bookmarks - **Storage**: To cache authentication tokens and settings locally - **Host Permissions**: To communicate with Markit servers for syncing ### Optional Permissions - **All Sites**: Only when you explicitly save a bookmark from that site - **Background**: To maintain login state and sync data ## Children's Privacy Markit is not intended for use by children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us immediately. ## International Data Transfers Your data may be processed and stored in countries other than your own. We ensure appropriate safeguards are in place to protect your data according to this privacy policy and applicable laws. ## Changes to This Policy We may update this privacy policy from time to time. We will notify you of any material changes by: - Updating the "Last Updated" date - Showing a notification in the extension - Sending an email to your registered address (for significant changes) ## Contact Information If you have questions about this privacy policy or our data practices, please contact us: - **Email**: privacy@markit.app - **Support**: support@markit.app - **Website**: https://markit-cyan.vercel.app ## Legal Compliance This privacy policy complies with: - **GDPR** (General Data Protection Regulation) - **CCPA** (California Consumer Privacy Act) - **COPPA** (Children's Online Privacy Protection Act) - **Chrome Web Store Developer Program Policies** ## Data Processing Legal Basis (GDPR) We process your data based on: - **Consent**: For optional features like analytics - **Contract Performance**: To provide the bookmark management service - **Legitimate Interest**: To improve and secure our service --- **Effective Date**: December 2024 By using the Markit browser extension, you acknowledge that you have read and understood this privacy policy.