// LEGAL Privacy Policy

Last updated: March 2026

TL/DR

We don't collect your data. We don't know who you are. We designed it that way on purpose.

What We Collect

On Our Servers

• SHA-256 token hashes - When you install the extension, a random token is generated on your device. Only the irreversible hash is sent to our server to verify the tokens access tier. We cannot reverse this hash to identify you.
• Payment records - If you make a donation, we store the payment reference (derived from your token hash) and the blockchain transaction ID. No personal information.
• Submitted domain reports - If you submit a blocked site, we store the domain name and region. No identifying information about who submitted it.

What We Do NOT Collect

• Email addresses
• Names or real identities
• IP addresses
• Browsing history
• Browsing habits or analytics
• Device fingerprints
• Location data (beyond region selection)

Server Logging

Logging on our servers iscompletely disabled. No connection logs, no access logs, no bandwidth logs. We could not produce browsing records even if legally compelled to, because the data does not exist.

Extension Permissions

The extension requests the following permissions:

• proxy - To configure selective routing for allowed-list domains only
• storage - To store your token and preferences locally on your device
• webRequest / webRequestAuthProvider - Server Authentication
• declarativeNetRequest - To block ads and strip tracking parameters
• privacy - To disable WebRTC IP leaking

All processing happens locally in your browser. The extension does not send your browsing data to us or any third party.

Third-Party Services

We do not use any third-party tracking or pass on any identifying information to any third party.

The only external communications the extension makes are:

• To our own servers (for token verification and allowed-list updates)
• To our own servers (for routing allowed-list domains)

DNS Resolution

When using Smart Routing, DNS queries for allowed-list domains are resolved through our server using trusted public DNS resolvers, not your ISP's DNS. This prevents DNS-based tracking of your browsing.

Data Retention

Token hashes are stored indefinitely (they cannot identify you). Payment records are stored for 90 days after expiry. Submitted domain reports are stored until reviewed.

Your Rights

Since we don't collect personal data, there's nothing to request, modify, or delete. If you uninstall the extension, your local token is deleted. We have no way to link the hash on our server back to you.

Changes to This Policy

If we change this policy, we'll update the date at the top. Since we don't have your email, we can't notify you directly so check back here occasionally for changes.

Contact

Questions about privacy? Use the contact form on our website.

← Back to home