RememberMyContext — Legal
Privacy Policy • Terms of Service • Chrome Data Practices Disclosure
Privacy Policy — RememberMyContext
This Privacy Policy explains what data we collect, how we use it, and your rights. If you have questions, contact admin@remembermycontext.com.
1. Overview
RememberMyContext ("we", "our", or "the Service") is a browser extension that helps users create encrypted "Context Boxes" and automatically share them with large language model (LLM) web interfaces (ChatGPT, Claude, Gemini, Perplexity, etc.). This policy explains our practices and the choices available to you.
2. Data We Collect
2.1 Data you provide:
- Email address: used for account registration, verification, and password resets.
- Password (hashed): We store a password hash using bcrypt; raw passwords are never stored.
- Context Boxes: text content you create and designate to store (encrypted before storage).
- Context metadata: box names, versions, and related metadata.
- Feedback & support messages.
2.2 Automatically collected data:
- URLs of LLM sites you visit (to detect when to inject context).
- Timestamps of context injection and the target LLM.
- Internal analytics events (feature usage, onboarding completion) — collected and stored internally only.
- Error logs: server-side error logs stored on our servers for debugging purposes (not shared with third parties).
We do not collect: browser history outside LLM domains, device fingerprinting, authentication tokens, payment or financial data, nor data from children under 13.
3. How We Use Your Data
We use the data to:
- Provide core functionality (create, store, version, and inject Context Boxes).
- Authenticate accounts and deliver account-related emails.
- Track usage and improve the product using internal analytics and error logs.
- Debug operational issues and respond to user support requests.
4. Third-Party Sharing
We do not sell, rent, or otherwise monetize your personal data. We share a limited subset of data with third parties strictly to operate the Service:
-
Resend (resend.com) — used solely to send account verification and password reset emails.
What we share: your email address at the time a transactional email is sent.
What we do not share: context content (encrypted or decrypted), context metadata, analytics, password hashes, or error logs.
Resend privacy policy: https://resend.com/legal/privacy-policy. - Render.com — hosting provider for our PostgreSQL database where encrypted data, metadata, and internal logs are stored. Render is a cloud infrastructure provider and does not access or process your data except as necessary to host our service.
5. Where and How Data Is Stored
Data is stored in a PostgreSQL database hosted on Render.com. Data stored server-side includes:
- Email + bcrypt password hash
- Encrypted context content (ciphertext)
- Context metadata (box names, version numbers)
- Internal analytics events and server-side error logs
6. Security & Encryption
We implement multiple security layers:
- Encryption in transit: All network traffic uses HTTPS/TLS.
- Encryption of content: Context Box text is encrypted using Fernet (AES-128-CBC + HMAC-SHA256).
- Server decryption policy: The server holds the Fernet key and is able to decrypt Context Box content only when you explicitly request it (for example, when you choose to copy a box to an LLM session or view decrypted content). We do not access or read your content without your explicit action.
- Key management: Encryption keys and other secrets are stored as server-side environment variables and are not exposed to clients.
- Password storage: Passwords are hashed using bcrypt before storage; plaintext passwords are never stored.
- Access controls: Internal access to production systems is limited and audited; decryption requires an explicit user action and is logged.
7. Data Retention & Deletion
We use a combination of automatic and manual deletion policies to maintain data hygiene and user control:
- Automatic deletion: Context versions that have not been used for 30 days are automatically deleted from our servers to reduce stale data retention.
- Manual deletion: You may permanently delete your account and all associated data from the dashboard at any time. Manual deletion is immediate and irreversible.
- Account deletion grace period: When you request account deletion, your data will be retained for 7 days (a grace period during which you may cancel the deletion). After the 7-day grace period, your data is permanently deleted.
8. Children's Privacy
The Service is not intended for children under 13. We do not knowingly collect data from children under 13.
9. Changes to This Policy
We may update this policy to reflect new features or legal requirements. Material changes will be communicated to users by email or via product notifications. The effective date at the top of this page reflects the most recent update.
Terms of Service — RememberMyContext
By installing or using the RememberMyContext extension you agree to these terms.
1. Acceptance
By using RememberMyContext, you accept and agree to be bound by these Terms of Service. If you do not agree, do not use the Service.
2. Use of the Service
You may use the Service for lawful purposes only. You agree not to:
- Reverse engineer, decompile, or disassemble the extension;
- Attempt unauthorized access to our systems or other users' accounts;
- Use the Service to transmit malware, harmful content, or for illegal activities;
- Circumvent or remove any security or technical features of the Service.
3. Accounts
You must register with a valid email address. You are responsible for maintaining the security of your credentials and for all activity on your account.
4. User Content & Ownership
You retain full ownership of any content you add to Context Boxes. By using the Service you grant us permission to store encrypted copies of that content and to process metadata required to provide the Service. Server-side decryption occurs only after explicit user action (e.g., request to inject or copy a box to an LLM), and such access is logged.
5. Service Availability
The Service is provided "as-is." We do not guarantee uninterrupted operation or compatibility with future LLM site changes. We will make reasonable efforts to maintain the Service and to communicate major outages.
6. Limitation of Liability
To the fullest extent permitted by law, RememberMyContext.com and its owners are not liable for indirect, special, incidental, or consequential damages arising from your use of the Service, including data loss or service interruptions.
7. Indemnification
You agree to indemnify and hold harmless RememberMyContext.com and its affiliates from legal claims, damages, liabilities, and expenses arising from your use of the Service or violation of these Terms.
8. Termination
We may suspend or terminate accounts that violate these Terms. You may delete your account at any time; account deletion follows the retention and grace period rules described in the Privacy Policy.
9. Third-Party Services
We use third-party services to operate the Service, including Resend (resend.com) for email delivery and Render.com for hosting. Your email address may be shared with Resend for transactional email delivery only. See our Privacy Policy for details.
10. Governing Law
These Terms are governed by applicable law in your jurisdiction.
Chrome Data Practices Disclosure
1. Data Collected
- Personal Info: Email address (account creation, verification).
- Account Data: bcrypt password hash, account metadata.
- Encrypted Content: Context Box ciphertext.
- Activity: LLM site URLs visited, timestamps of injections, which LLM received context.
- App Activity: Feature usage events, onboarding completion, server-side error logs (for debugging).
2. Purpose of Collection
Collected data is used to provide extension functionality, authenticate users, debug issues, and perform internal analytics to improve the product.
3. Data Shared with Third Parties
We share only the following with third-party providers for operational purposes:
- Resend (resend.com): Shared email addresses for account verification and password reset emails only. Resend privacy policy.
- Render.com (hosting): Stores encrypted data and logs as required to operate the service.
4. Storage & Security
Data is stored on Render.com in a PostgreSQL database. We use Fernet (AES-128-CBC + HMAC-SHA256) encryption for sensitive content and TLS for network transport. The server holds the Fernet key and decrypts content only upon explicit user action. Encryption keys are stored in secure server environment variables.
5. Chrome Extension Permissions
The extension requests the following permissions during installation:
storage— persist settings and local cache.scripting— inject context into LLM pages.activeTabandtabs— detect LLM domains and current tab for injection logic.- Host permissions — required for targeted LLM domains (e.g.,
https://chat.openai.com/*, host permissions for Claude, Gemini, Perplexity, andhttps://remembermycontext.com/*for API calls).
6. User Rights
Users may:
- Delete their account and all stored data from the dashboard (subject to the 7-day grace period).
- Request data deletion via email to admin@remembermycontext.com.
7. No Data Sale or Model Training
We do not sell user data or use it to train machine learning models.
Contact & Legal
If you have questions about these policies, please contact:
| Support email | admin@remembermycontext.com |
| Company | RememberYourContext.com |
| Effective date | November 25, 2025 |
| Privacy policy URL | https://remembermycontext.com/legal |