Privacy Policy
Your privacy is the product.
Effective Date: 2025-11-05 · Version 2.2.2 · Last Updated 2026-01-26
Overview
DataBlur is committed to protecting your privacy. This policy explains how we collect, use, and protect your data.
Key principle: we collect the minimum data necessary to improve DataBlur. All data collection is optional and user-controlled.
What We Collect
Always Collected
- Nothing. DataBlur stores all blur data locally on your device.
Optionally Collected (User Controlled)
- Anonymous analytics data — only if enabled. See below.
Analytics (Optional)
DataBlur includes optional analytics to help us understand how users interact with the extension. Analytics is enabled by default and can be disabled anytime via the "Help improve DataBlur" toggle in the extension popup.
What's Collected When Analytics is Enabled
- Feature usage: which blur tools you use (element, area, text, auto-detect)
- Auto-detection preferences: which PII categories you enable — not what was detected
- Error tracking: error types only, never messages or stack traces
- Performance metrics: how long blur and detection take
What's NOT Collected
- No website URLs or hostnames — we don't know which sites you visit
- No page titles — we don't know what you're reading
- No blur content — what you blur is private
- No passwords, emails, or credentials
- No personal information, IP address, or device ID
- No browsing history or session recordings
How We Protect Your Data
1. Multiple Validation Layers
All analytics events pass through 4 layers before leaving your device:
- Coordinator — verifies user consent and feature enabled
- Service — strips automatic context properties
- Validator — checks against a whitelist (deny-by-default)
- SDK — final sanitization before network transmission
2. Privacy-First Defaults
- Consent ON by default — opt out anytime
- Whitelist model — deny-by-default
- HTTPS-encrypted in transit
3. Pseudonymous User ID
We generate a unique local ID (e.g. ext_user_1699123456_abc123) to recognize returning users. It's stored on your device and isn't linked to your identity.
Who Processes Your Data
PostHog processes the optional analytics events described above. PostHog never receives your blur content, URLs, page titles, credentials, or personal information. See PostHog's privacy policy.
Data Retention
- Blur data: stored on your device until you delete it
- Analytics data: 90 days on PostHog servers
- User ID: stored until you uninstall the extension
Your Rights (GDPR / CCPA)
- Opt-out: disable the "Help improve DataBlur" toggle
- Access / portability: email support@datablur.app with your user ID
- Delete: disable analytics, uninstall the extension, and request deletion from PostHog
- Non-discrimination: opting out doesn't affect functionality
Chrome Web Store Compliance
- Single purpose:screen recording & sharing privacy
- No selling of data — ever
- No third-party sharing beyond PostHog
- HTTPS encryption in transit
Changes to This Policy
We may update this policy as the extension evolves. Major changes will be reflected in this document and in extension release notes.
Contact Us
Questions, privacy issues, or abuse reports: support@datablur.app