Privacy Policy

Scope of This Policy

This Privacy Policy covers all Chrome extensions developed and published by AlphaByteCore, including but not limited to:

• ZeroTrust
• ChromaStudio
• VaultGuard
• SentinelX
• NotePin
• NexusTab
• SnapFull
• FocusGuard
• SkyCast
• PrivacyShield
• ClipMind
• DevFeed

It covers what data these extensions access, how it is processed, where it is stored, and what third-party services may be involved when you opt into specific features.

Information We Collect

The answer is simple: none.

AlphaByteCore extensions do not collect, transmit, or store any personal information on any AlphaByteCore server. Every operation performed by our extensions happens locally on your device, inside Chrome's secure sandbox.

We do not collect:

• Personal identification (name, email, phone, address)
• Browsing history, visited URLs, or page content
• Passwords, credentials, form data, or clipboard contents
• Location data or IP addresses
• Usage analytics, telemetry, or behavioral data
• Device identifiers or hardware fingerprints
• Any data derived from your use of these extensions

How Data is Processed On-Device

All data access and processing by AlphaByteCore extensions occurs within Chrome's browser sandbox on your device. Examples:

• ZeroTrust / SentinelX: Page content is analyzed locally against locally-cached threat rules. No page URLs or content are transmitted.
• VaultGuard: Your vault is encrypted with AES-256-GCM and stored in Chrome's local storage. The encryption key is derived from your master password and is never transmitted.
• NotePin / ClipMind: Notes and clips are stored in Chrome's IndexedDB on your device only.
• ChromaStudio / SnapFull: Colors picked and screenshots taken are processed and stored locally. No image data is transmitted.

Third-Party API Features (Opt-In Only)

Certain features connect to third-party APIs (such as the Anthropic Claude API for AI-powered features in ChromaStudio, ClipMind, SkyCast, and NexusTab). When you use these features:

• You must provide your own API key. AlphaByteCore does not provide or proxy API access.
• Your API key is stored in Chrome's secure local storage on your device only.
• API requests are made directly from your browser to the third-party service (e.g., api.anthropic.com). AlphaByteCore is not in the data path.
• AlphaByteCore does not receive, log, or have access to any prompts or responses from these API calls.
• The third-party service's own privacy policy governs their handling of data (e.g., Anthropic's Privacy Policy).

These features are clearly marked as requiring an API key. If you do not configure an API key, no third-party API calls are made.

External Data Fetching

Some extensions fetch publicly available data to function:

• ZeroTrust: Downloads a threat rule database update (a compressed list of known malicious domains/patterns). This download does not include any data from your device.
• SkyCast: Fetches weather forecast data from Open-Meteo using your device's coordinates. The weather API receives coordinates only — no personal information.
• DevFeed / NexusTab: Fetches public RSS feeds and Hacker News API data. No personal data is sent in these requests.
• VaultGuard Breach Monitor: Uses k-anonymity — only a 5-character prefix of a hashed email is sent to the Have I Been Pwned API. Full emails are never transmitted.

Chrome Extension Permissions

Every permission requested by an AlphaByteCore extension is documented on the extension's dedicated page at extensions.alphabytecore.com/extensions/[name].html, with the specific reason it is needed. We request only the minimum permissions required for the extension to function.

Chrome extensions with broad permissions (like webRequest) use them exclusively for the stated purpose (e.g., blocking tracker requests). They are not used to monitor, log, or transmit browsing activity.

Local Storage & Data Control

Any data stored by AlphaByteCore extensions (settings, notes, vault entries, color palettes, etc.) is stored exclusively in Chrome's local storage mechanisms (localStorage, IndexedDB, chrome.storage.local). This data:

• Remains on your device and under your sole control
• Is deleted when you remove the extension from Chrome
• Can be cleared at any time through Chrome's extension storage controls or the extension's own settings
• Is never synced to AlphaByteCore servers

Children's Privacy

AlphaByteCore extensions are not directed at children under 13 years of age. We do not knowingly collect any information from children. If you believe a child under 13 is using an AlphaByteCore extension, please contact us at support@alphabytecore.com.

Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Changes will be noted in the Chrome Web Store changelog for affected extensions. The "Last Updated" date at the top of this page reflects the most recent revision. Continued use of any AlphaByteCore extension after an update constitutes acceptance of the revised policy.

Contact & Requests

For questions, concerns, or requests related to this Privacy Policy:

• Email: support@alphabytecore.com
• Subject line: "Privacy Policy Query"
• Website: extensions.alphabytecore.com
• Response time: We aim to respond within 48 business hours.