Privacy Policy for PrivyAPI
Last Updated: May 26, 2026
Overview
PrivyAPI ("the Extension") is a privacy-first API testing tool designed to keep your data secure and private. This Privacy Policy explains how we handle information when you use our Chrome extension.
Core Privacy Principle
PrivyAPI does not collect, store, or transmit any personal data to external servers. The extension is designed from the ground up with privacy as a core principle.
1. User Data Collection
PrivyAPI does NOT collect, harvest, or transmit any personal or sensitive user data.
Specifically, the extension does not collect:
- Personal identifiers (name, email, account details)
- Usage analytics, statistics, or telemetry
- Browsing history or visited URLs
- API request or response content
- Authentication tokens or credentials
2. User Data Handling
Your data is handled locally within your browser and your local system:
- Local AI Processing (Ollama): Requests to generate API schemas or helper prompts are processed locally on your machine via your local Ollama server (typically at
http://127.0.0.1:11434orhttp://localhost:11434). Before sending data to local Ollama, the extension automatically redacts potentially sensitive information (Authorization headers, passwords, API keys, tokens, email addresses, phone numbers). - API Testing: Outbound API network requests are only triggered by your explicit user action (clicking "Send") and go directly from your browser to your specified target API.
- OpenAPI Import: Fetching OpenAPI/Swagger specs is only initiated by your explicit action (entering a URL and clicking "Fetch").
3. User Data Storage
All API projects, environment variables, and request histories are stored locally on your device:
- Local Storage: Stored locally using the browser's IndexedDB API. This includes user settings (Ollama URL, model preferences), imported OpenAPI specifications, and environment variables.
This data is strictly sandboxed to the extension and is not uploaded to remote cloud databases. Stored data is retained until you uninstall the extension or manually clear IndexedDB.
4. User Data Sharing
We do not share, sell, or transmit any data to any party. All requests originate from your local browser client, and no tracking script or telemetry integrations exist.
5. Contact Information
For privacy-related questions, support, or inquiries, please contact us:
- Email: support@kenelite.com
- Feedback Form: https://forms.gle/5RyBW79SPnAJM32Z7
PrivyAPI is a non-commercial product; we do not guarantee response times.
Summary:
- Do you collect personal data? No
- Do you use analytics? No
- Do you share data with third parties? No
- Where is data stored? Locally on your device only
- Do you have servers? No
PrivyAPI is built for developers who value privacy. Your data stays on your machine.