Your data, your control.
Privacy by design.

ContxtFlow consists of two parts: a Chrome extension and a web application. Each handles data differently.

Chrome extension (stored locally):

Authentication token

A session token and cached user profile (name and email) stored in Chrome extension storage to keep you signed in.

Extension preferences

Settings such as selected tier, theme preference, and web search toggle, stored locally in Chrome extension storage.

Webpage content

When you activate ContxtFlow on a page, the extension reads the visible text content to build your AI prompt. This content is sent to ContxtFlow servers, which forward it to the AI inference provider (OpenRouter) for processing. It is not stored on our servers after the request completes.

Website & web application (server-side):

Account information

Name and email address provided by Google OAuth when you sign in. OAuth access and refresh tokens are stored server-side for authentication purposes.

Session data

Session tokens, IP addresses, and user agent strings for authentication and security.

Usage logs

AI model used, token counts, estimated cost, and subscription plan per request — used for usage limits and billing. We do not store your prompts or AI responses in usage logs.

Preferences & subscription

Your preferred AI models per tier and subscription plan.

Saved conversations

When you explicitly save a chat from the extension, the full message history, system prompt, and associated site/mode metadata are stored on our servers so you can access them later. Conversations are not saved automatically — only when you choose to save them. Saved chat titles are auto-generated by sending a brief excerpt to an AI model.

Aggregate analytics

We record which site integrations and modes are used in aggregate (without linking to your account) to understand feature popularity and improve the service.

Uninstall feedback

If you uninstall the extension, you may optionally provide feedback including a reason, details, and email address. This data is not linked to your account.

We use the data we collect for the following purposes:

Account management

To create and maintain your account, authenticate your sessions, and provide customer support.

Service delivery

To route AI requests, enforce usage limits, manage subscriptions, and store saved conversations when you choose to save them.

Analytics

Our website uses Simple Analytics, which collects no personal data and uses no cookies. We use aggregate usage logs to understand overall service usage patterns.

We do not use your data for advertising, profiling, or behavioral tracking. We do not sell your data to third parties.

Extension data is stored locally on your device using Chrome's built-in extension storage APIs (chrome.storage.local). This data is sandboxed to the extension and is not accessible to websites or other extensions.

Server-side data (accounts, sessions, usage logs, and saved conversations) is stored in a PostgreSQL database hosted in the EU. All connections to our servers are encrypted via TLS. We apply the principle of least privilege to database access and regularly review our security practices.

To remove extension data, uninstall the extension from Chrome. To remove server-side data, delete your account from the account settings page — this permanently deletes all associated data.

When you send a message through ContxtFlow, the request flows through our servers:

• The extension sends your prompt and extracted page context to ContxtFlow servers
• Our server validates your session, checks usage limits, and forwards the request to OpenRouter's API using our server-side API key
• The AI response is streamed back through our server to your browser

Your prompts and page context pass through our servers but are not stored after the request completes (except when you explicitly save a conversation, or in aggregate usage logs that record model, token count, and cost without prompt content).

You have full control over your data:

Export your data

Download a complete copy of your data in JSON format from your account settings.

Delete your account

Permanently delete your account and all associated server-side data from your account settings. This action is irreversible.

Delete extension data

Uninstalling the extension from Chrome permanently deletes all locally stored data (authentication token, preferences).

Delete saved conversations

Delete individual saved conversations from your saved chats page, or delete all data by deleting your account.

ContxtFlow requests only the permissions necessary to function:

Host permissions & content scripts

The extension uses host permissions to inject a lightweight content script on web pages. This script only activates when you explicitly open the ContxtFlow side panel or use the keyboard shortcut — it does not monitor browsing activity, read page content in the background, or send any data without your action.

sidePanel

To display the ContxtFlow interface in Chrome's side panel.

identity

To authenticate your account via Google OAuth directly from the extension.

storage

To save your authentication token, preferences, and settings locally in Chrome extension storage.

The extension does not access your browser history, cookies, passwords, or any data beyond the content of the page you explicitly activate it on.

We may update this privacy policy as the service evolves. Material changes will be communicated via a prominent notice on the Service.

Continued use of the Service after a policy update constitutes acceptance of the revised terms.

If you have any questions or concerns about this privacy policy or how ContxtFlow handles data, please contact us:

Under the General Data Protection Regulation (GDPR), we process your personal data on the following legal bases:

Performance of a contract (Art. 6(1)(b))

Processing necessary to provide the Service you signed up for — account creation, authentication, AI request routing, usage tracking, and subscription management.

Legitimate interest (Art. 6(1)(f))

Processing necessary for security (fraud prevention, abuse detection), service improvement (aggregate analytics), and infrastructure operations. We balance these interests against your rights and freedoms.

Consent (Art. 6(1)(a))

Where required, such as for optional features or communications. You may withdraw consent at any time.

If you are in the European Economic Area (EEA), you have the following rights under the GDPR:

Right of access (Art. 15)

Request a copy of your personal data. Use the data export feature in your account settings.

Right to rectification (Art. 16)

Request correction of inaccurate personal data. Contact us at [email protected].

Right to erasure (Art. 17)

Request deletion of your personal data. Use the account deletion feature in your account settings.

Right to restrict processing (Art. 18)

Request that we limit processing of your data in certain circumstances. Contact us at [email protected].

Right to data portability (Art. 20)

Receive your data in a structured, machine-readable format. Use the data export feature in your account settings.

Right to object (Art. 21)

Object to processing based on legitimate interests. Contact us at [email protected].

You also have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.

If you are a California resident, the California Consumer Privacy Act (CCPA) grants you additional rights regarding your personal information.

Categories of personal information we collect:

• Identifiers — name, email address, IP address, account ID
• Internet activity — session information, user agent, usage logs
• Commercial information — subscription plan, payment history (when applicable)

We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising.

You have the right to know what data we collect, request deletion, and opt out of any future sale of personal information. To exercise these rights, contact us at [email protected] or use the data export and account deletion features in your account settings.

Your data may be processed by third-party service providers located outside the European Economic Area, including in the United States. Where such transfers occur, they are protected by appropriate safeguards:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• The EU-U.S. Data Privacy Framework, where applicable

We ensure that any international transfer of your data is subject to adequate protection measures in compliance with the GDPR.

We use the following third-party subprocessors to deliver the Service:

Google (OAuth)

Authentication provider. Processes name, email, and profile image during sign-in. Location: United States.

OpenRouter

AI inference provider. Processes prompts and page context forwarded from ContxtFlow servers. Location: United States.

Simple Analytics

Privacy-friendly website analytics. No personal data collected, no cookies used. Location: European Union.

Hosting provider

Database and application hosting. Processes all server-side data. Location: European Union.

We will update this list when we add or change subprocessors and will notify you of material changes.