Privacy Policy

PixelCloak is a privacy-first screenshot redaction tool. Our core design principle is that your screenshots and their content never leave your device. All image processing — OCR, sensitive data detection, and redaction — happens locally in your browser. We do not receive, store, or process any screenshot data.

This policy explains what limited information we do collect to operate the licensing and payment system, and how we protect it.

Account information: When you create an account or purchase a license, we collect your email address and an optional display name. Your email is used for authentication, license delivery, and account-related communications.

License and device data: When you activate a license on a device, we record a SHA-256 hash of your device identifier (never the raw ID), the device name you provide (e.g., "Chrome on macOS"), your extension version, and timestamps for first and last activation. License keys are stored encrypted using AES-256-GCM and are never stored in plaintext.

Payment information: Payments are processed by Stripe. We receive confirmation metadata — order amount, currency, and transaction status — but we do not store credit card numbers or full payment details. Stripe's privacy policy governs how your payment data is handled.

• ✓Screenshot images or their content — ever
• ✓Text recognized by OCR from your screenshots
• ✓The sensitive data detected (emails, keys, SSNs, etc.)
• ✓Browsing history or website content
• ✓Usage analytics or behavioral telemetry
• ✓Location data

Daily export counts (for the free tier limit) are tracked locally in your browser only and are never transmitted to our servers.

We use the information we collect solely to:

• Authenticate you and provide access to your account
• Deliver your license key after purchase
• Verify license validity when the extension checks in
• Enforce device limits (up to 3 devices per license)
• Send transactional emails (purchase confirmation, license delivery)
• Provide customer support when you contact us

We do not sell your data, use it for advertising, or share it with third parties except as described below.

We use the following third-party services to operate PixelCloak:

• Supabase — Provides our database and authentication infrastructure. Your account data and hashed license information are stored in Supabase-hosted PostgreSQL. Supabase is SOC 2 Type 2 compliant.
• Stripe — Processes all payments. We never handle raw card data. Stripe is PCI DSS Level 1 certified.
• Resend — Used to send transactional emails (license delivery, purchase confirmation). Only your email address and license information are shared for this purpose.

We apply the following measures to protect your data:

• License keys are encrypted at rest using AES-256-GCM with random initialization vectors
• Device identifiers are stored as SHA-256 hashes — never the raw value
• Activation tokens are one-time hashes that expire upon re-verification
• All API communication uses HTTPS/TLS
• Database access is restricted via row-level security policies

We retain your account and license data for as long as your account exists or as required to provide the service. Billing records are retained indefinitely for legal and accounting purposes. If you request account deletion, we will remove your personal information within 30 days, subject to legal retention obligations.

Depending on your jurisdiction, you may have rights to access, correct, export, or delete your personal data. To exercise these rights or request account deletion, contact us at privacy@pixelcloak.app.

We may update this policy from time to time. We will post any changes on this page with an updated date. Continued use of PixelCloak after changes constitutes acceptance of the updated policy.

Questions about this policy? Email us at privacy@pixelcloak.app.