Chrome Extension Privacy Policy
How LinkFlow collects, uses, and protects your data
LinkFlow Chrome Extension Privacy Policy
Last Updated: January 16, 2025 Version: 1.0.0 Public URL: https://link-flow.co/privacy/extension/
Overview
LinkFlow is a prospect management tool that lets you save and organize LinkedIn profiles you view. Saving prospects is a user-initiated action. However, when you view a LinkedIn profile page, the extension automatically reads profile data from the page and may make API calls to check if the prospect exists and prefetch profile data for faster UI loading. This extension does not automate LinkedIn activity (e.g., sending messages, connection requests).
This privacy policy explains what data the LinkFlow Chrome extension collects, how we use it, and your rights regarding that data.
1. Data We Collect
1.1 Data We Read and Store
Automatic reading and prefetching: When you visit a LinkedIn profile page, the extension automatically:
- Reads basic profile details (name, headline, company) from the page DOM
- Makes API calls to check if this prospect already exists in your account
- Prefetches profile data from Unipile (if connected) for faster popup loading
This data is held temporarily in memory and local cache to provide a responsive UI experience.
Persistent storage: We only persist a prospect when you click the "Save to LinkFlow" button. At that point we store:
| Data | Description | Purpose |
|---|---|---|
| Profile name | First and last name from LinkedIn profile | Identify your prospect |
| Headline/job title | Professional headline displayed on LinkedIn | Prospect organization |
| Company name | Current company from LinkedIn | Prospect filtering |
| LinkedIn profile URL | URL of the profile you saved | Link back to LinkedIn |
| Your notes | Notes you manually enter | Your reference |
Important: We do not persist prospect data without your explicit action. Automatic reading is used only for display and cache purposes.
1.2 Conversation Data (Optional Feature)
If you enable the Conversations feature via Unipile integration:
| Data | Description | Retention |
|---|---|---|
| Message history (timestamps, content, attachments) | Message history from LinkedIn (encrypted at rest) | 90 days, then auto-deleted |
| Conversation metadata | Conversation state, unread count, last message time | Until conversation deleted |
Opt-in required: Conversation sync requires you to connect your LinkedIn account via Unipile. Once connected, LinkFlow periodically syncs conversations in the background to keep your inbox up to date. You can stop this by disconnecting Unipile.
1.3 Account Data
| Data | Description | Purpose |
|---|---|---|
| Email address | Your registration email | Account identification, notifications |
| Hashed password | Securely hashed (bcrypt) | Authentication |
| Authentication tokens | Session tokens | Keep you logged in |
1.4 Data We Do NOT Collect
- LinkedIn credentials or passwords
- Browsing history outside of LinkedIn
- Any data for advertising purposes
Note on temporary data: Profile data read from pages you visit is cached locally for UI performance but is not persisted to our servers unless you explicitly click "Save to LinkFlow."
2. How We Use Your Data
We use your data solely to provide the LinkFlow service:
| Use | Description |
|---|---|
| Prospect management | Store and organize profiles you save |
| Conversation tracking | Show message status and follow-up reminders (if enabled) |
| AI classification | Categorize conversations by engagement level (hot lead, engaged, neutral, etc.) |
| Account authentication | Verify your identity and maintain your session |
We do NOT use your data for:
- Advertising or ad targeting
- Selling to third parties
- Training AI models on your data
- Any purpose unrelated to the LinkFlow service
3. AI Features
3.1 Conversation Classification
LinkFlow uses AI (Anthropic Claude by default; OpenAI if you configure your own API key) to classify your conversations into categories like "hot lead," "engaged," "neutral," etc.
What we send to AI:
- Recent conversation messages (sanitized to prevent prompt injection)
- Prospect context (name, headline, company) for personalization
AI data handling:
- Anthropic Claude: API data retained for 7 days for trust & safety, then deleted. Data is not used to train models. Privacy policy
- OpenAI (BYOK): API data retained for 30 days by default. Zero Data Retention (ZDR) available for approved business accounts. Data is not used to train models. Data usage policy
- Processing location depends on your account and provider configuration
3.2 Feedback Learning
When you provide feedback on AI classifications (thumbs up/down), we store:
- The corrected label you provide
- Timestamp of your feedback
This helps improve classification accuracy for your account only.
4. Third-Party Services
We share data with these service providers to operate LinkFlow:
| Provider | Purpose | Data Shared | Their Privacy Policy |
|---|---|---|---|
| MongoDB Atlas | Database hosting | All user data (encrypted at rest) | mongodb.com/legal/privacy-policy |
| Unipile | LinkedIn conversation sync (optional) | LinkedIn session, message metadata | unipile.com/privacy |
| Anthropic | AI conversation classification (default) | Message excerpts, prospect context (name, headline, company) | anthropic.com/privacy |
| OpenAI | AI classification (BYOK - if you configure your own key) | Message excerpts, prospect context | openai.com/policies/privacy-policy |
| Fly.io | Backend hosting | Encrypted data in transit | fly.io/legal/privacy-policy |
| Netlify | Frontend hosting | None (static files only) | netlify.com/privacy |
We do NOT share your data with:
- Advertisers
- Data brokers
- Any parties not listed above
5. Data Security
5.1 Encryption
- In transit: All data transmitted via HTTPS/TLS
- At rest: Sensitive data encrypted using AES-256
- Passwords: Hashed using bcrypt (never stored in plain text)
- Cookies: HttpOnly, Secure, first-party only
5.2 Access Controls
- All API endpoints require authentication
- Data scoped to your account only (you cannot access other users' data)
- Access to user data is restricted to authorized personnel as needed for support and maintenance
6. Data Retention
| Data Type | Retention Period |
|---|---|
| Account data | Until you delete your account |
| Saved prospects | Until you delete them |
| Message history (content, timestamps, attachments) | 90 days, then auto-deleted |
| Conversation metadata (state, unread count, last message time) | Until conversation deleted |
| AI classification data | Until conversation deleted |
Automatic Deletion
Message history (content, timestamps, attachments) is automatically deleted after 90 days via database TTL (time-to-live) indexes. Conversation metadata (state, unread count, last message time) remains until you delete the conversation or your account.
7. Your Rights
7.1 Access Your Data
Export all your data anytime:
- Web app: Settings > Privacy > Export My Data
- Format: JSON file with all prospects, conversations, and account data
7.2 Delete Your Data
Delete individual prospects:
- Click the delete button on any prospect card
Delete your account:
- Settings > Account > Delete Account
- All data permanently deleted within 24 hours
7.3 Disable Features
Disable conversation sync:
- Settings > Integrations > Disconnect Unipile
- Stops all message data collection immediately
Disable AI features:
- Settings > AI Features > Toggle off
- No data sent to AI providers
7.4 GDPR Rights (EU Users)
If you're in the European Union, you have additional rights:
- Right to rectification: Correct inaccurate data
- Right to restrict processing: Limit how we use your data
- Right to data portability: Receive data in machine-readable format
- Right to lodge a complaint: Contact your local data protection authority
8. Children's Privacy
LinkFlow is not intended for users under 18 years old. We do not knowingly collect data from children. If we discover a user is under 18, we will delete their account and data.
9. International Data Transfers
LinkFlow stores data in the United States (AWS US-East-1 via MongoDB Atlas). If you're located outside the US, your data is transferred under:
- Standard Contractual Clauses (SCCs) with our data processors
- Your explicit consent when creating an account
10. Changes to This Policy
We'll notify you of material changes via:
- Email to your registered address (14 days advance notice)
- In-app notification on next login
Continued use after changes constitutes acceptance. If you disagree, you may delete your account before the changes take effect.
11. Contact Us
Privacy inquiries: Email: privacy@link-flow.co
General support: Email: support@link-flow.co
Response time: Within 5 business days
12. Chrome Web Store Disclosures
Permissions Justification
| Permission | Why We Need It |
|---|---|
storage | Cache your authentication and prospect data locally for faster performance |
activeTab | Detect when you're on a LinkedIn profile page so we can show the save button |
alarms | Refresh your inbox badge count periodically (every 5 minutes) |
Host Permissions
| Host | Why We Need It |
|---|---|
https://*.linkedin.com/* | Inject content script on all LinkedIn subdomains (www, m, localized versions) |
https://linkedin.com/* | Cover the base domain before redirect to www |
https://link-flow.co/api/* | Communicate with the LinkFlow backend API |
Single Purpose
LinkFlow's single purpose is to help you save and organize LinkedIn profiles as prospects. The extension:
- Adds a "Save to LinkFlow" button on LinkedIn profiles you visit
- Shows your inbox and conversation status
- Lets you manage prospects from the extension popup
- Automatically reads and prefetches profile/prospect data for a responsive UI (no prospect data persisted without your explicit Save action)
Saving prospects requires your explicit action. The extension does not automate LinkedIn activity (e.g., sending messages, connection requests, profile views).
Effective Date: January 16, 2025
This privacy policy applies to the LinkFlow Chrome extension. For the LinkFlow web application privacy policy, visit link-flow.co/privacy.