Browser Extension Privacy
Your privacy is our top priority. This guide explains exactly what the Porcia browser extension tracks, how your data is handled, and the privacy controls available to you.Privacy-First Design
The Porcia browser extension is built with privacy as a core principle:Local Processing
All analysis happens locally in your browser
Minimal Data
Only domain names, detection method, and a work email boolean are sent to Porcia
No Content Reading
Never reads page content, forms, or passwords
User Control
Full control over what’s tracked and when
What We Track
Data We Collect
Login Event Information:- ✅ Domain name only (e.g., “slack.com”)
- ✅ Detection method (login_form, oauth_google, oauth_microsoft, saml_sso, url_pattern)
- ✅ Whether a work email was used (boolean only — the email itself is never stored)
- ✅ Timestamp of the login event
- ✅ Login frequency per domain
- ✅ Time of day of login events
Data We DON’T Collect
Never Collected:- ❌ Specific page URLs or paths
- ❌ Page content or text
- ❌ Form inputs or passwords
- ❌ Keystrokes or mouse movements
- ❌ Screenshots or visual data
- ❌ Personal browsing history
- ❌ Non-SaaS websites
- ❌ Cookies or local storage
- ❌ Download history
- ❌ Bookmarks
How Data is Processed
Local Analysis
All analysis happens in your browser:Login Event Monitoring
Extension monitors for login events: form submissions with password fields, OAuth button clicks, and SSO redirects
What Gets Sent to Porcia
Only login event data is sent:Privacy Controls
Tracking Controls
Pause Detection- Stop all login detection with one click
- Resume anytime
- No data collected while paused
- Exclude specific domains from detection
- Permanently ignore certain websites
- Useful for personal projects or sensitive sites
Privacy Settings
Incognito Mode Tracking- Disabled by default
- Can be enabled if needed for work
- Respects browser’s private browsing intent
Data Deletion
Clear Local Data- Delete all locally stored usage data
- One-click clearing in settings
- Cannot be recovered after deletion
- Contact support to delete all server-side data
- Includes historical usage data
- Permanent deletion within 30 days
Data Storage & Security
Local Storage
What’s Stored Locally:- Recent usage data (configurable retention)
- Extension settings and preferences
- Domain exclusion list
- Sync status and timestamps
- Encrypted using browser’s built-in encryption
- Isolated from other extensions
- Cleared when extension is uninstalled
Server Storage
What’s Stored on Porcia Servers:- Login event data
- Domain names and detection methods
- Work email boolean flags
- User ID (for attribution)
- AES-256 encryption at rest
- TLS 1.3 encryption in transit
- Access control and audit logs
- Regular security audits
- Active users: Data retained while account is active
- Deleted accounts: Data deleted within 30 days
- Backups: Removed from backups within 90 days
Security & Privacy Commitments
Data Privacy
Porcia is working towards formal compliance certifications. In the meantime, we are committed to giving you control over your data: Your Rights:- Right to access your data
- Right to delete your data
- Right to export your data
- Right to restrict processing
- Right to object to processing
- Go to Settings → Privacy
- Click Download My Data or Delete My Data
- Or contact support@porcia.org
International Data Transfers
- We take steps to protect data transferred internationally
- Contact support@porcia.org for details on data transfer protections
Transparency
Open Source Components
The extension uses open-source libraries:- All dependencies are publicly auditable
- No hidden tracking or analytics
- Regular security updates
No Third-Party Tracking
- No Google Analytics in the extension
- No third-party advertising networks
- No data sold to third parties
- No cross-site tracking
Audit Trail
Complete audit trail of data access:- Who accessed your data
- When it was accessed
- What actions were taken
- Available in Settings → Privacy → Audit Log
Common Privacy Questions
Can my employer see what websites I visit?
Can my employer see what websites I visit?
No. The extension only detects login events on non-excluded domains. Your employer can see:
- Which SaaS applications you log into (e.g., “Slack”)
- How you authenticated (login form, OAuth, SSO)
- Whether you used a work email (boolean only)
- Specific pages or URLs
- What you’re doing on those sites
- Your email address or password
- Personal browsing history
- Consumer domains (Google, YouTube, Reddit, etc.)
Does the extension track my personal browsing?
Does the extension track my personal browsing?
No. The extension only detects login events. Personal websites, social media (unless you log in with a work email), and consumer domains are automatically excluded.
Can I use the extension without my team knowing?
Can I use the extension without my team knowing?
You can pause detection at any time. When paused, no login events are captured. Contact your workspace admin about privacy options for your team.
What happens to my data if I leave the company?
What happens to my data if I leave the company?
When your account is deactivated, your usage data is retained for 30 days (in case of accidental deletion), then permanently deleted. You can request immediate deletion by contacting support.
Does Porcia sell my data?
Does Porcia sell my data?
No. We never sell your data to third parties. Period. Your usage data is used only to provide you with insights and optimization recommendations.
Can I see what data Porcia has about me?
Can I see what data Porcia has about me?
Yes. Go to Settings → Privacy → Download My Data to export all data Porcia has collected about you.
Privacy Best Practices
For Individual Users
- Review detected domains regularly - Ensure only work-related logins are captured
- Use domain exclusions - Exclude personal projects or sensitive sites
- Review privacy settings - Ensure they match your preferences
For Workspace Admins
- Communicate clearly - Explain what’s detected and why
- Respect privacy - Allow team members to pause detection
- Use aggregate data - Focus on team trends, not individual behavior
- Provide opt-out - Allow team members to opt out if needed
- Regular privacy reviews - Ensure compliance with company policies
For Privacy-Conscious Users
- Exclude sensitive domains - Add to exclusion list
- Disable incognito detection - Don’t detect logins in private browsing
- Pause when needed - Pause detection during personal time
Privacy Policy
Data Collection Purpose
We collect usage data to:- Help you understand which SaaS tools you actually use
- Identify unused licenses and cost-saving opportunities
- Provide usage analytics and insights
- Improve Porcia’s vendor database
Data Sharing
We share data only:- With your workspace
- With service providers (cloud infrastructure, hosting) under strict contracts
- When required by law (with notice to you if possible)
- With advertisers
- With data brokers
- For marketing purposes
- With third parties for their own use
Data Protection
We protect your data with:- Encryption at rest and in transit
- Access controls and authentication
- Regular security audits
- Incident response procedures
- Employee training and background checks
Contact & Support
Privacy Questions
For privacy-related questions:- Email: privacy@porcia.org
- Response time: Within 24 hours
- Escalation: privacy-escalation@porcia.org
Data Requests
To request data access, deletion, or export:- Go to Settings → Privacy
- Use self-service tools
- Or email: privacy@porcia.org
Security Issues
To report security vulnerabilities:- Email: security@porcia.org
- We follow responsible disclosure practices
Updates to Privacy Policy
We may update this privacy policy:- You’ll be notified of material changes
- Continued use implies acceptance
- You can opt out by uninstalling the extension
Read Full Privacy Policy
View complete privacy policy
Next Steps
Extension Usage Guide
Learn how to use the extension
Extension Installation
Install the browser extension
Email Integration
Connect your email for discovery
Contact Support
Get help from our team