Legal

Privacy Policy

Last updated: June 17, 2026

Overview

OrbitFlow is a focus productivity tool. We built it to help you stay on task — not to spy on you. This policy explains exactly what data OrbitFlow and its Chrome extension collect, how it's used, and what we do (and don't do) with it.

The Chrome Extension — How It Works

The OrbitFlow extension monitors your active browser tab during a Focus Session you explicitly start. It does not run in the background when you're not in a session.

Every 10 seconds during an active session, the extension reads:

  • The URL of your active tab (query strings and long IDs are stripped before transmission)
  • The visible text content of the page — the same text a sighted user would read

This data is sent to our server and forwarded to OpenAI's API to determine whether you're on task. No screenshots are ever taken. We never capture images, video, passwords, or form input values.

PII Scrubbing — What Gets Stripped Before Transmission

Before any page text leaves your browser, the extension automatically redacts the following patterns:

  • Email addresses → replaced with [email]
  • Credit/debit card numbers → replaced with [card]
  • Social Security Numbers → replaced with [ssn]
  • Phone numbers → replaced with [phone]
  • UUIDs and long tokens (32+ character strings) → replaced with [token] or [id]

This scrubbing happens entirely inside your browser, before the data is sent anywhere. The raw, unredacted text never leaves your device.

What We Store on Our Servers

  • Your account information: email address, username, hashed password (bcrypt — never plaintext)
  • Session metadata: start/end times, focus duration, distraction counts, points earned
  • Flow and Orbit configurations you create (names, topics, timer settings)
  • Streak and points data for gamification
  • The domains you add to your blocked sites list

We do not store the page text or URLs that are scanned during sessions. Scan payloads are forwarded to OpenAI and discarded — we retain only the outcome (on-task or off-task).

Third-Party Services

  • OpenAI — Page text (after PII scrubbing) is sent to OpenAI's API to classify whether you're on task. OpenAI's data handling is governed by their Privacy Policy. We use the API in a way that does not allow OpenAI to use your data for model training (per their API usage terms).
  • Railway — Our hosting provider. Your data is stored on Railway-managed PostgreSQL databases. See Railway's Privacy Policy.

Data You Can Control

  • Sessions only scan when you start them. Close the session or click Pause to stop scanning immediately.
  • Delete your account — contact us and we will permanently delete all data associated with your account within 30 days.
  • Blocked sites list — you can view and remove entries at any time in your Settings.

Cookies & Local Storage

OrbitFlow uses a single session cookie to keep you logged in. We do not use advertising cookies, tracking pixels, or analytics SDKs. The Chrome extension uses chrome.storage.local to persist your auth token and session state locally on your device — this data never leaves your browser except as described above.

Children's Privacy

OrbitFlow is not directed at children under 13. We do not knowingly collect data from anyone under 13.

Changes to This Policy

If we make material changes, we'll update the date at the top of this page. Continued use of OrbitFlow after changes constitutes acceptance of the updated policy.

Contact

Questions about this policy? Email us at chalmersscott100@gmail.com.