Privacy Policy

Your privacy is the product.

Effective Date: 2025-11-05 · Version 2.2.2 · Last Updated 2026-01-26

Overview

DataBlur is committed to protecting your privacy. This policy explains how we collect, use, and protect your data.

Key principle: we collect the minimum data necessary to improve DataBlur. All data collection is optional and user-controlled.

What We Collect

Always Collected

  • Nothing. DataBlur stores all blur data locally on your device.

Optionally Collected (User Controlled)

  • Anonymous analytics data — only if enabled. See below.

Analytics (Optional)

DataBlur includes optional analytics to help us understand how users interact with the extension. Analytics is enabled by default and can be disabled anytime via the "Help improve DataBlur" toggle in the extension popup.

What's Collected When Analytics is Enabled

  • Feature usage: which blur tools you use (element, area, text, auto-detect)
  • Auto-detection preferences: which PII categories you enable — not what was detected
  • Error tracking: error types only, never messages or stack traces
  • Performance metrics: how long blur and detection take

What's NOT Collected

  • No website URLs or hostnames — we don't know which sites you visit
  • No page titles — we don't know what you're reading
  • No blur content — what you blur is private
  • No passwords, emails, or credentials
  • No personal information, IP address, or device ID
  • No browsing history or session recordings

How We Protect Your Data

1. Multiple Validation Layers

All analytics events pass through 4 layers before leaving your device:

  1. Coordinator — verifies user consent and feature enabled
  2. Service — strips automatic context properties
  3. Validator — checks against a whitelist (deny-by-default)
  4. SDK — final sanitization before network transmission

2. Privacy-First Defaults

  • Consent ON by default — opt out anytime
  • Whitelist model — deny-by-default
  • HTTPS-encrypted in transit

3. Pseudonymous User ID

We generate a unique local ID (e.g. ext_user_1699123456_abc123) to recognize returning users. It's stored on your device and isn't linked to your identity.

Who Processes Your Data

PostHog processes the optional analytics events described above. PostHog never receives your blur content, URLs, page titles, credentials, or personal information. See PostHog's privacy policy.

Data Retention

  • Blur data: stored on your device until you delete it
  • Analytics data: 90 days on PostHog servers
  • User ID: stored until you uninstall the extension

Your Rights (GDPR / CCPA)

  • Opt-out: disable the "Help improve DataBlur" toggle
  • Access / portability: email support@datablur.app with your user ID
  • Delete: disable analytics, uninstall the extension, and request deletion from PostHog
  • Non-discrimination: opting out doesn't affect functionality

Chrome Web Store Compliance

  • Single purpose:screen recording & sharing privacy
  • No selling of data — ever
  • No third-party sharing beyond PostHog
  • HTTPS encryption in transit

Changes to This Policy

We may update this policy as the extension evolves. Major changes will be reflected in this document and in extension release notes.

Contact Us

Questions, privacy issues, or abuse reports: support@datablur.app