O
Ooki

Privacy Policy

Official Policy Last Updated:

1. Introduction

Welcome to Ooki. We are committed to protecting your privacy through a "Privacy by Design" approach. This policy explains how we handle your information when you use the Ooki browser extension and our website.

2. The Ooki "Zero-Knowledge" Architecture

Our service is built on the principle that your data belongs to you. We use technical measures to ensure that your sensitive synchronization data is opaque to us:

  • End-to-End Encryption: Your synchronized cookies are encrypted before leaving your browser and remain encrypted at rest.
  • Physical Data Isolation: We utilize Cloudflare Durable Objects to provide dedicated, isolated storage instances for every user. Your data is never co-mingled in a single central database.
  • No Access Policy: We do not have the technical means to decrypt or view the contents of the cookies you synchronize.

3. Information We Collect

  • Account Data: To provide the service, we collect your email address and subscription status. This is necessary for authentication and billing.
  • Technical Metadata: We collect minimal metadata required for synchronization logic, such as device names and synchronization timestamps (updatedAt), to resolve conflicts.
  • Error Reporting: We use Sentry to collect anonymous crash reports. This helps us fix bugs without identifying individual users or their data.
  • Payment Information: Payments are processed by Stripe. We do not store your credit card details on our servers; we only receive a confirmation of payment.

4. Information We DO NOT Collect

We believe in data minimization. Ooki does NOT collect:

  • Your browsing history.
  • Your IP address (except for temporary rate-limiting and security logs which are deleted within 30 days).
  • The contents of your web requests or keystrokes.

5. Data Retention & International Transfers

Your account data is stored as long as your account is active. You can delete your account and all associated synchronized data at any time through the extension settings. As we use Cloudflare's global network, your data may be processed in various locations around the world, always protected by industry-standard encryption and isolation.

6. Your Rights (GDPR/CCPA)

Regardless of your location, we respect your rights to access, rectify, or erase your personal data. You can export your data or delete your account directly within the Ooki Extension.

7. Contact Us

If you have questions regarding this policy or our security practices, please contact us at support@ooki.com.

Back to Home
Contact support@ooki.com for legal inquiries