Information Collection and Usage

1. Data Collected

• Selected Text: BetterReply collects text that you select and choose to process via the extension. This is essential for providing intelligent, context-specific suggestions.
• Generated Responses: AI-generated responses based on your input and instructions are temporarily processed and securely transmitted to and from our backend servers.
• Extension Configuration: We collect and store configuration details like user instructions, API keys, compliance mode status, and a unique identifier for analytics and authentication.
• Technical Data: Limited technical information (e.g., browser type, extension usage patterns, IP address, timestamps) is collected to optimize performance, troubleshoot issues, and enhance security.

2. Why Data is Collected

• Selected Text: To deliver personalized, relevant AI-generated improvements.
• Configuration Data: Essential for maintaining your personalized preferences and ensuring secure, authenticated communication.
• Technical Information: Used to maintain and improve extension functionality, security monitoring, compliance with rate-limiting, and diagnosing errors.

Permissions Required and Their Justifications

• ContextMenus: Enables the extension's context‑menu integration to improve your workflow directly from selected text.
• Storage: Necessary to save your personalized settings, unique identifier, and secure tokens locally within your browser.
• Scripting: Allows the extension to interact dynamically with web pages, execute scripts securely, and show notifications and response modals directly on the active page.
• ActiveTab: Essential for the extension to interact only with the active webpage content when you trigger it, ensuring that actions are taken solely based on your explicit requests.
• Host Permissions: Authorizes the extension to communicate with a very small set of external origins—specifically our backend service. These cross‑origin requests are what let BetterReply fetch configuration, verify your license token, and send text for AI processing. Without explicit host permissions, Chrome would block these network calls and the extension could not function. We apply the principle of least privilege by granting access only to the exact domains required.

Data Security

All sensitive data (e.g., API keys, extension tokens) are securely stored with SHA-256 hashing and robust encryption. BetterReply strictly uses HTTPS protocol for data communication, ensuring secure transmission between your browser and our backend servers hosted on Microsoft Azure.

Compliance Mode

BetterReply includes a compliance mode feature that automatically identifies and redacts personally identifiable information (PII), such as email addresses, phone numbers, social security numbers, financial details, and more, from text before sending it for processing. This is done on a local-level; PII never reaches our servers. You can enable or disable compliance mode based on your requirements.

Third-party Services

We use OpenAI's API for generating responses. All interactions with OpenAI are secured and anonymized where possible, with careful attention to data minimization principles.

User Rights

You have full control over your data:

• Data Access and Deletion: You can access and delete your configuration data directly through extension settings.
• Consent: Processing occurs only with explicit user consent.

Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy at any time. Any changes will be communicated clearly through the extension and on our official website.

Acceptance of Terms

By using BetterReply, you agree to be bound by these Terms of Service. These terms govern your use of the BetterReply web extension and web app.

User Responsibilities

• Appropriate Use: You must use BetterReply lawfully and ethically.
• Account Security: Maintain the confidentiality of your API keys and extension tokens. Immediately inform us of unauthorized use or breaches.

Intellectual Property

BetterReply's original content, including the interface design, codebase, logos, and other intellectual properties, remains our exclusive property.

Limitation of Liability

BetterReply and its affiliates shall not be liable for any indirect, incidental, or consequential damages resulting from the use or inability to use our services.

API and Usage Limits

Users have defined limits based on their subscription tier (free, basic, pro). Exceeding these limits may restrict access temporarily.

Termination

We reserve the right to terminate your access to BetterReply for violation of these terms or misuse of services.

Updates and Maintenance

BetterReply may occasionally undergo updates and maintenance. We strive to notify users in advance, though some downtime may occur unexpectedly.

Governing Law

These terms are governed by and construed in accordance with the laws of the jurisdiction in which our backend infrastructure is hosted, specifically the United States.

Contact Information

If you have questions or concerns regarding these policies, please contact us at:

• Email: dev@avenyx.io