Privacy Policy

We built Instynx to be a genuinely helpful browser companion. That means we need some of your data to work properly — but we believe you should always know exactly what we collect, why, and how to control it. This policy explains all of that in plain language.

The short version

• •We never sell your data. Period.
• •Browsing monitoring is opt-in — you choose the level, and you can pause anytime.
• •Site-native panels (YouTube summaries, search answers, writing help) work without an account — we don't track who you are for those.
• •You can export or delete all your data at any time.
• •We never monitor banking, healthcare, government, or other sensitive sites.

Who we are

Instynx is a browser extension and web application. When we say "we," "us," or "Instynx," we mean the team behind the product. When we say "you," we mean you — the person using Instynx.

What we collect and why

If you just install the extension (no account)

You get instant value — YouTube summaries, search answers, article key points, writing help, and reply suggestions — without creating an account. Here's what happens with your data:

• •Page content sent for AI processing: When a panel appears (e.g., YouTube takeaways), the relevant content (video title, transcript, article text, search query) is sent to our server, which forwards it to an AI model for processing. We cache results briefly to avoid re-processing the same content.
• •Anonymous usage stats: We track which panel types are used and on which sites (e.g., "YouTube panel shown") to improve the product. This is tied to a random installation ID — not your identity.
• •We don't store: Your browsing history, the actual content of pages you visit, or any personal identifiers.

If you create an account

When you sign up, we additionally collect:

• •Account info: Your name and email (via Google sign-in). We don't store your Google password.
• •Profile and preferences: Your sector (e.g., student, marketer), goals, monitoring tier choice, and playbook rules you set up.
• •Chat messages: Conversations you have with AI in the sidebar or web app are stored so you can access your history.
• •Saved content: Anything you save to Wisebase, Projects, or Tasks.

If you enable browsing monitoring

This is fully opt-in. During onboarding, you choose your monitoring level:

• •Balanced: We observe which sites you visit, how long you spend, and basic scroll patterns — enough to trigger your playbook rules.
• •Full Teammate: In addition to the above, we observe text selections, focus patterns, and deeper page engagement to provide more proactive assistance.

Both tiers skip sensitive sites automatically — banking, healthcare, government (.gov, .mil), password managers, and authentication pages are never observed.

Social media engagement

If you enable social feed intelligence, Instynx observes your engagement on X (Twitter) and LinkedIn — likes, bookmarks, retweets, and comments. This is used to generate actionable insights and trigger your playbook rules. We store engagement metadata (post text snippets, author handles), not your social media credentials.

Reply and writing assistance

When you use reply suggestions or writing help, the text you're working with is sent to our server for AI processing. For reply assist, we read the message context to generate relevant suggestions. We do not store message content — we only track usage counts (how many reply requests, which sites) to improve the product.

How we process your data

When Instynx needs AI to do something (summarize, suggest, write, analyze), your content is sent to our server, which routes it to an AI model through OpenRouter (our AI provider). Here's what that means:

• •Content is sent over encrypted connections (HTTPS).
• •OpenRouter processes the request and returns a result. They have their own privacy policy at openrouter.ai/privacy.
• •We may cache AI results briefly (by content hash, not by user) to avoid redundant processing.
• •We don't use your data to train AI models. We're a consumer of AI APIs, not a model trainer.

Third-party services we use

Each service has its own privacy policy. We encourage you to review them.

What we store locally on your device

The extension stores some data locally in your browser using Chrome's storage API:

• •Your user ID, email, and name (for session continuity)
• •Monitoring preferences (tier, pause state, domain overrides)
• •Your playbook rules
• •A random installation ID (anonymous identifier)

This data never leaves your device unless you're signed in and it needs to sync with our server. You can clear it anytime by removing the extension.

Sites we never touch

Instynx automatically skips sensitive sites. No monitoring, no panels, no data collection on:

• •Banking and financial sites (Chase, Wells Fargo, Citi, HSBC, etc.)
• •Healthcare and patient portals
• •Government sites (.gov, .mil)
• •Password managers (1Password, LastPass, Bitwarden)
• •Login and authentication pages

You can also add your own blocked domains in Settings.

Your controls

You're always in charge. Here's what you can do:

• •Pause monitoring — one click in the extension or web app. Instynx stops observing immediately.
• •Go Dark — instantly pause all monitoring for 2 hours. No questions asked.
• •Transparency Log — see everything Instynx observed and every action it took, with timestamps and reasons.
• •Export your data — download everything we have about you in one click.
• •Delete your data — remove observations, chat history, saved content, or your entire account.
• •Block specific sites — add any domain to your personal block list.
• •Change monitoring tier — switch between Balanced and Full Teammate, or turn off monitoring entirely.

Data security

All data in transit is encrypted via HTTPS/TLS. Our database is hosted on Railway with encryption at rest. Access to production systems is restricted. We follow industry-standard security practices, but no system is 100% bulletproof — we want to be honest about that.

Cookies

The web app uses a session cookie to keep you logged in (valid for 6 months). We don't use tracking cookies, advertising cookies, or any third-party cookie services. The extension doesn't use cookies at all — it uses Chrome's local storage.

Children

Instynx is not designed for children under 13. We don't knowingly collect data from anyone under 13. If you believe a child has provided us personal information, please contact us and we'll delete it.

Changes to this policy

We may update this policy as we add features or change how things work. If we make significant changes, we'll notify you through the app. The "last updated" date at the top tells you when this was last revised.

Questions?

If anything here is unclear, or you have concerns about your data, reach out to us at privacy@instynx.io. We're real people and we'll respond.