Privacy Policy

2. Information We Collect

2.1 Information You Provide

• Memory Entries: Questions, answers, tags, and categories you create to store your personal information for form autofill purposes.
• API Keys: When using the BYOK (Bring Your Own Key) feature, you provide API keys from OpenAI, Anthropic, Google, Groq, or DeepSeek. These are encrypted and stored locally in your browser.
• Settings & Preferences: Your theme preferences, autofill settings, confidence thresholds, and trigger mode selections.

2.2 Automatically Collected Information (Phase 1 - Local Only)

• Usage Statistics: Number of times each memory entry is used, last used timestamps, and successful autofill counts (stored locally only).
• Browser Information: Browser type and version for compatibility purposes (used for device fingerprinting for encryption, not transmitted).

2.3 Phase 2 Cloud Sync (Optional)

If you choose to upgrade to our paid tier with cloud sync:

• Encrypted Data: Your memory entries encrypted end-to-end before transmission.
• Sync URL: A unique URL for device authentication and data synchronization.
• Usage Metrics: AI operation counts, sync status, and error logs for service reliability.

3. How We Use Your Information

3.1 Phase 1 (Free/Open Source)

• Local Storage Only: All your data is stored exclusively in your browser's local storage. We do not have access to, collect, or transmit any of your memory entries.
• AI Processing: When you use AI features with your own API keys, data is sent directly from your browser to the AI provider you selected (OpenAI, Anthropic, etc.). We do not intercept or store this data.
• No Analytics: The free version does not collect any telemetry or usage analytics.

3.2 Phase 2 (Paid Tier)

If you opt into our paid cloud sync service, we use your information to:

• Provide cross-device synchronization of your encrypted data
• Enable managed AI features without requiring your own API keys
• Track usage for billing and rate limiting purposes
• Improve service reliability and performance
• Provide customer support when requested

4. Data Storage and Security

4.1 Encryption

• API Keys: Encrypted using AES-256-GCM encryption with PBKDF2 key derivation (100,000 iterations) before storage.
• Device Fingerprinting: A unique device identifier is generated from your browser characteristics to create encryption keys. This fingerprint never leaves your device.
• Cloud Data (Phase 2): All data synced to the cloud is encrypted end-to-end using AES-256-GCM before transmission. We cannot decrypt your data without your device.

4.2 Storage Locations

• Phase 1: All data stored in browser.storage.local (Chrome: 5MB limit). No remote servers involved.
• Phase 2: Optional cloud storage provided by Supabase (PostgreSQL + pgvector) with SOC 2 Type II compliance.

4.3 Security Measures

• Industry-standard encryption protocols (AES-256-GCM)
• Secure key derivation (PBKDF2 with 100,000 iterations)
• No plaintext storage of sensitive information
• Regular security audits and penetration testing (Phase 2)
• SOC 2 Type II certification (Phase 2 paid tier)

5. Third-Party Services

5.1 AI Providers (BYOK)

When using your own API keys, your data is sent directly to:

• OpenAI: Subject to OpenAI's privacy policy and terms of service
• Anthropic: Subject to Anthropic's privacy policy and terms of service
• Google Vertex AI: Subject to Google Cloud's privacy policy
• Groq: Subject to Groq's privacy policy and terms of service
• DeepSeek: Subject to DeepSeek's privacy policy and terms of service

Note: We recommend reviewing each provider's data handling practices before using their services.

5.2 Infrastructure Partners (Phase 2)

• Supabase: Database and authentication services (SOC 2 Type II certified)
• Stripe: Payment processing (we do not store credit card information)

6. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information.

6.1 Phase 1 (Free Tier)

Your data is never shared or transmitted to our servers. It remains exclusively on your device.

6.2 Phase 2 (Paid Tier)

We may share your encrypted data only in the following circumstances:

• Service Providers: With trusted partners (Supabase, Stripe) who assist in operating our service, under strict confidentiality agreements.
• Legal Compliance: When required by law, court order, or government regulation.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, with notice to affected users.

7. Your Privacy Rights

You have the following rights regarding your data:

7.1 Access and Export

• Export Data: Use the built-in CSV export feature to download all your memory entries at any time.
• Import Data: Import previously exported data or migrate between devices using CSV import.

7.2 Deletion

• Local Data: Use the "Clear All Memories" feature to permanently delete all stored data from your browser.
• Cloud Data (Phase 2): Contact us at support@superfill.ai to request permanent deletion of cloud-stored data. We will comply within 30 days.
• Uninstall: Uninstalling the extension removes all local data from your browser.

7.3 Control

• Opt-Out of Cloud Sync: Cloud sync is entirely optional. You can use the extension indefinitely without ever enabling cloud features.
• API Key Management: You can update or remove your API keys at any time through the settings page.

7.4 GDPR Rights (EU Users)

If you are located in the European Economic Area (EEA), you have additional rights:

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent at any time

8. Children's Privacy

Superfill.ai is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information promptly.

9. Data Retention

9.1 Phase 1 (Local Storage)

Data is retained indefinitely on your device until you manually delete it or uninstall the extension.

9.2 Phase 2 (Cloud Sync)

• Active Accounts: Data retained as long as your subscription is active.
• Canceled Accounts: Data retained for 30 days after cancellation, then permanently deleted.
• Version History: Previous versions of entries retained for 30 days for conflict resolution.

10. International Data Transfers

For Phase 2 cloud sync users, your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• SOC 2 Type II certified infrastructure partners
• End-to-end encryption for all data in transit and at rest

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Updating the "Last Updated" date at the top of this policy
• Displaying a prominent notice in the extension (for significant changes)
• Sending an email notification to paid tier users (Phase 2)

Your continued use of Superfill.ai after changes become effective constitutes acceptance of the updated policy.

12. Open Source Transparency

The Phase 1 (free tier) version of Superfill.ai is open source. You can review our code, verify our privacy claims, and even self-host the extension. Our GitHub repository is available at:

https://github.com/superfill-ai/extension

We believe in transparency and invite security researchers to audit our code and report vulnerabilities responsibly.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

For GDPR-related requests, please include "GDPR Request" in the subject line. We will respond within 30 days.