Privacy Policy

Last updated: April 29, 2026

1. Our Core Commitment

Zoomr is built on a local-first philosophy. Your recordings, screenshots, and project data remain on your device by default.

Zoomr only captures screen content when you explicitly start a recording or take a screenshot. The extension does not record or access your screen in the background.

We do not upload your recordings unless you explicitly use a cloud feature such as generating a shareable link.

2. Information We Collect

Account Information

• Name (optional)
• Email address

Authentication Tokens

When you sign in, Zoomr stores your session token and refresh token locally in chrome.storage to keep you logged in across sessions. These tokens are used only to verify your identity and Pro subscription status. They are never shared with third parties beyond Supabase, which issues and validates them.

Payment Information

Payments are securely processed by Paddle. We do not store your card details.

Usage Data

We collect limited, anonymized usage data (feature usage only). No recordings or personal content are included.

Cloud Sharing (Optional)

When you click "Share via Link", your exported video is uploaded to our Cloudflare Worker and stored so it can be accessed via the generated URL. This upload only happens on explicit user action. You can delete shared content at any time from your account.

3. What We Do NOT Collect

• No browsing history tracking
• No background monitoring
• No recording without user action
• No ads or trackers
• No selling of data

4. How We Use Data

• Run and improve the product
• Authentication
• Payments
• Support

5. Storage

Local: Stored in your browser via chrome.storage, including your shots, editor preferences, and session state.

Cloud: Only if you upload. Shared videos are stored on Cloudflare infrastructure. Account and subscription data is stored in Supabase.

6. Retention

• Account active → data kept
• Delete account → removed within 30 days

7. Your Rights

Contact: support@zoomr.tech

8. Local Control

• Delete anytime inside app
• Or uninstall extension

9. Permissions

• Screen capture → recording
• Tabs → active tab interaction
• Scripting → overlays
• Storage → local data
• Identity → Google OAuth sign-in
• Offscreen → MediaRecorder runs in a hidden document since MV3 service workers cannot handle media streams directly
• Alarms → keeps the recording session alive since service workers can be suspended by Chrome at any time

10. Third Parties

• Paddle — payment processing
• Supabase — authentication and subscription data
• Cloudflare — video hosting for shared links (Pro feature, upload on user action only)

11. Contact

support@zoomr.tech

12. No Remote Code

Zoomr runs locally and does not execute remote code. All extension logic is bundled within the extension itself. Network requests are limited to data calls (authentication, subscription checks, and optional video uploads) and no code is loaded or executed from external sources at runtime.