Privacy Policy

Last updated: July 6, 2026 · Applies to: Vailra (personal edition, Chrome Web Store)
The short version: Vailra collects no data whatsoever. Your prompts, the AI's replies, and everything Vailra detects are processed entirely on your device and are never transmitted to us or any third party. No analytics, no tracking, no cookies, no telemetry.

What Vailra does

Vailra is a browser extension that protects sensitive data in your prompts to AI services (ChatGPT, Claude). It detects sensitive items (personal information, API keys, source-code identifiers, financial data) in the text you send, replaces them with synthetic placeholders before the request leaves your browser, and restores the original text in the AI's reply — visible only on your screen.

Data processed locally (never leaves your device)

To do its job, Vailra reads and modifies the outgoing request on ChatGPT/Claude pages and reads the AI's response as it renders. This includes prompt text, detected sensitive entities, the synthetic placeholders, and a local placeholder-to-original map. All of this stays on your device. The map is encrypted in memory (AES-256-GCM) with an ephemeral key that is never saved and is discarded when your browser closes (or within a few hours).

Data we collect

None. The personal edition performs no network requests of its own, sets no cookies, and contains no analytics or telemetry.

Permissions and why we need them

Enterprise edition (separate, opt-in)

A separate enterprise edition offers optional "team analytics" that is off by default. If an administrator explicitly enables it and configures their own endpoint, Vailra sends anonymized metadata only — counts of items masked by category, latency buckets, and coarse timestamps — to that self-hosted endpoint. It never sends prompt content, redacted originals, or the placeholder map. This policy covers the personal edition, which has this disabled and absent.

Data retention & deletion

All data lives only on your device. Uninstalling the extension removes it. The in-memory encryption key is never persisted and expires automatically.

Changes

Material changes will be posted here with an updated date.