Privacy Policy – Linkora

Last updated: April 2026

1. Overview

Linkora is a Chrome Extension that helps users generate LinkedIn comments, messages, and replies using AI. This policy explains what data we collect, how we use it, and how it is protected.

2. Data We Collect

We collect and process the following data to provide the service:

• LinkedIn authentication data – When you sign in with LinkedIn, we receive your name, email address, and a short-lived authorization code. This is exchanged for a secure JWT token stored locally in your browser.
• Usage data – We track the number of AI generations you perform per month to enforce plan limits (Free: 10, Pro: 250, Max: unlimited).
• Content you submit – Text you paste into the extension (LinkedIn post content, recipient info, messages) is sent to our backend to generate AI responses. This content is processed and not permanently stored.
• Subscription data – If you upgrade to a paid plan, your plan status and Razorpay subscription ID are stored on our backend to manage billing.
• Writing profile (optional) – Name, role, and bio you enter during onboarding are stored locally in your browser only and never sent to our servers except as part of AI generation prompts.

3. What Is NOT Collected

• We do NOT collect your LinkedIn password
• We do NOT store your LinkedIn activity, feed, or connections
• We do NOT track your browsing history or activity outside LinkedIn
• We do NOT sell your data to third parties
• We do NOT use your data for advertising
• We do NOT store AI-generated content after your session ends

4. How Data Is Used

• To authenticate you securely via LinkedIn OAuth
• To generate AI-powered comments, messages, and replies
• To track and enforce monthly generation limits by plan
• To manage paid subscriptions

5. Data Storage & Retention

• Locally in your browser: Your session token and writing profile are stored in Chrome's local storage. You can clear this at any time by signing out or uninstalling the extension.
• On our backend: Your email, name, plan, and usage count are stored securely. Content submitted for generation is processed in memory and not persisted.
• If you delete your account or uninstall the extension, you can request full data deletion by contacting us.

6. Data Security

All data is transmitted over HTTPS. Authentication uses short-lived OAuth tokens. Our backend is hosted on secure infrastructure (Vercel). We do not manually access or review your content.

7. Third-Party Services

We use the following third-party services:

• LinkedIn OAuth – For authentication (governed by LinkedIn's Privacy Policy)
• Anthropic (Claude AI) – For generating text responses. Your submitted content is sent to Anthropic's API under their usage policies.
• Razorpay – For payment processing on paid plans
• Vercel – For backend hosting

8. Your Rights & Controls

• You can sign out at any time from the extension to remove your local session
• You can uninstall the extension to stop all data processing
• You can request deletion of your account data by contacting us

9. Contact

For privacy questions or data deletion requests, contact: progcode03@gmail.com