Privacy Policy — Correctio

1. Data We Collect

1.1 Page Information (All Users)

When monitoring is active, the Extension sends the following data about each visited page to our server for relevance judgment:

• Page URL
• Page title
• Meta description
• A short text snippet from the main content area (up to 500 characters)

This data is sent only while monitoring is enabled. It is not stored for anonymous users. For authenticated users, see Section 1.3.

1.2 Authentication Data (Authenticated Users Only)

If you choose to sign in, we collect:

• Email address (via Google or Apple sign-in)
• Authentication tokens (stored locally in your browser)

We do not collect or store your password. Authentication is handled entirely by Google or Apple via OAuth.

1.3 Judgment Logs (Authenticated Users Only)

For signed-in users, we store a log of each judgment:

• Page URL and title
• Whether the page was judged on-purpose or off-purpose
• The reason provided by the AI
• The active browsing purpose at the time

Daily judgment counts are stored as aggregate statistics without keeping per-page history.

1.4 User Settings (Authenticated Users Only)

We store your configuration on our server so it syncs across devices:

• Browsing purposes
• Whitelist and blacklist domains
• Schedule and profile settings
• Monitoring on/off state

1.5 Anonymous Identifiers

For users who do not sign in, we generate a random identifier (UUID) stored locally in your browser. This is used solely for daily rate limiting (10 judgments/day for anonymous users). We also use your IP address for rate limiting if the identifier is unavailable. We do not use these identifiers for tracking or advertising.

2. How We Use Your Data

3. Third-Party Services

We use the following third-party services to operate the Extension:

• Google Gemini API— Page information (URL, title, snippet) is sent to Google's Gemini API for relevance judgment. See Google's Privacy Policy.
• Firebase Authentication — Handles sign-in via Google and Apple. See Firebase Privacy.
• Firebase Firestore — Stores user settings and aggregate daily judgment counts for authenticated users.
• Vercel — Hosts our server infrastructure. See Vercel's Privacy Policy.

We do not sell, share, or transfer your data to any other third parties.

4. Data Storage and Security

• Server data is stored on Firebase Firestore and hosted on Vercel (Tokyo region).
• Authentication tokens are stored locally in your browser via chrome.storage.local.
• All communication between the Extension and our server uses HTTPS encryption.
• Correctio stores daily aggregate judgment counts, not per-page browsing history.

5. Permissions Explained

The <all_urls> permission is required because the Extension must be able to evaluate any page you visit. Page data is only read and sent to our server when monitoring is actively enabled.

6. Your Rights and Choices

• Disable monitoring at any time via the Extension popup. When disabled, no page data is collected or sent.
• Use without an account. The Extension works anonymously with limited features. No personal information is collected.
• Delete your data. Contact us to request deletion of your account and all associated data.
• Uninstall. Removing the Extension deletes all locally stored data. Aggregate server-side settings remain with your account until deleted.

7. Children's Privacy

The Extension is not directed at children under 13. We do not knowingly collect personal information from children.

8. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Last updated” date.

9. Contact

If you have questions about this Privacy Policy or wish to request data deletion, please contact us at:

Email: correctio.support(at)yaaaa.net