Privacy Policy

Effective Date: April 11, 2026 | Last Updated: April 11, 2026

1. Introduction

Breakflow (“we,” “our,” or “us”) operates the Breakflow Chrome browser extension and associated backend services (collectively, the “Service”). This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data.

By installing or using the Breakflow extension, you agree to the practices described in this policy. If you do not agree, please uninstall the extension and discontinue use.

2. What Data We Collect

2.1 Page Structure Data (Collected During Scans)

When you initiate a scan, the Breakflow extension captures the following from the currently active browser tab:

DOM structure (HTML element hierarchy, tag names, CSS class names, and element selectors)
Computed CSS styles relevant to responsive design (widths, heights, margins, padding, display, position, font sizes, overflow properties)
Element bounding box dimensions at multiple viewport widths (desktop, tablet, mobile)
Platform detection identifiers (e.g., data-framer-name, data-wf-page attributes)

This data is transmitted to our backend API for AI-powered analysis and is not stored after the analysis is complete.

2.2 What We Do NOT Collect

Text content, images, videos, or any visible page content
User input, form data, passwords, or personal information from the scanned page
Cookies, local storage, or session data from the scanned page
Browsing history, bookmarks, or data from any tab other than the one being scanned
Keystrokes, mouse movements, or interaction tracking of any kind

2.3 Account Data (When Applicable)

If you create an account or subscribe to a paid plan, we collect:

Name (if provided)
Email address
Payment information (processed and stored by Stripe; we do not store card numbers)
Scan usage count per billing period

2.4 Technical Data

We automatically collect minimal technical data to maintain and improve the Service:

Extension version number
Browser type and version
Error logs (if a scan fails)
Anonymized usage statistics (number of scans performed, not which URLs were scanned)

3. How We Use Your Data

To perform responsive design audits (page structure data is sent to our API and processed by Anthropic’s Claude AI)
To deliver scan results back to the extension
To track scan usage against your plan limits
To process payments and manage subscriptions
To diagnose and fix bugs or service errors
To improve the accuracy of our responsive design analysis

We do not use your data for advertising, profiling, or any purpose unrelated to delivering the Breakflow service.

4. Data Sharing and Third Parties

We share data only with the following third-party services, strictly to operate the Service:

Anthropic (Claude API) — receives anonymized page structure data to perform responsive design analysis. Anthropic does not retain input data for model training under their API terms.
Stripe — processes payment information for paid subscriptions. See Stripe’s privacy policy at stripe.com/privacy.
Vercel — hosts our backend API. See Vercel’s privacy policy at vercel.com/legal/privacy-policy.

We do not sell, rent, or trade your data to any third party. We do not share data with advertisers or data brokers.

5. Data Retention

Page structure data: Not stored. Processed in memory during analysis and discarded immediately after results are returned.
Scan results: Stored temporarily in your browser’s local storage (chrome.storage.local) on your device only. We do not retain results on our servers.
Account data: Retained for as long as your account is active. Deleted upon account deletion request.
Payment records: Retained as required by applicable tax and financial regulations.

6. Data Security

We implement the following measures to protect your data:

All data transmitted between the extension and our API is encrypted via HTTPS/TLS
API endpoints are rate-limited to prevent abuse
No page structure data is written to persistent storage on our servers
Payment processing is handled entirely by Stripe (PCI DSS compliant)

7. Chrome Extension Permissions

Breakflow requests only the minimum permissions required to function:

activeTab — to access the DOM of the page you choose to scan (only when you click the extension icon)
storage — to save scan results locally in your browser
scripting — to inject the content script that captures page structure for analysis

We do not request permissions to access all URLs, browsing history, bookmarks, downloads, or any data beyond what is required for the scan you initiate.

8. Your Rights

Depending on your location, you may have the following rights:

Access — request a copy of personal data we hold about you
Deletion — request deletion of your account and associated data
Correction — request correction of inaccurate personal data
Portability — request your data in a machine-readable format
Objection — object to specific processing activities

To exercise any of these rights, contact us at privacy@breakflow.dev. We will respond within 30 days.

9. Children’s Privacy

Breakflow is not intended for use by individuals under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify users through the extension or via email (if an account is registered). The “Last Updated” date at the top of this policy reflects the most recent revision.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: info@breakflow.io

Website: breakflow.io