Sofair Scanner · Chrome MV3

Sofair Scanner

Privacy Policy

Sofair· Extensions· Privacy· Sofair Scanner
Last updated: 2026-05-14 · Applies to version 0.2.0+

Sofair Scanner is a Chrome extension that diagnoses the «AI visibility» of websites. This page describes what data the extension collects, why, and how it uses that data.

What we collect

  • Domain of the current tab, captured at the moment you click the extension icon. Only the domain (for example example.com), not the full URL with path or query parameters. The domain is sent to sofair.ai so we can check whether the site is already in our Sofair index.
  • Scan event log — when you click «Scan» in the popup, we record one row containing: scanned domain, visibility score, timestamp, and the hashed IP described below. Used to identify which sites users are interested in checking and to size product decisions (e.g. which integrations to build next). Scans you don't initiate (passive browsing) are never logged.
  • IP address of the request, hashed with SHA-256, used for rate limiting and basic abuse protection. The raw IP is never stored.
  • User-Agent SofairScanner/0.2, used so we can filter extension traffic in our server logs.
  • Opt-in crash reports (Sentry), if you explicitly enable the toggle on the Options page. Off by default. Captures the stack trace and extension version. Never captures: domain, browsing history, page content.

What we do NOT collect

  • Browsing history — we do not track which sites you visit. Only sites you explicitly scan are logged (see «Scan event log» above).
  • Page content — DOM, text, images, or anything else inside your tabs.
  • Behavioural telemetry — no «user clicked link X» events. No Google Analytics, Mixpanel, Amplitude, PostHog, Segment, Hotjar, FullStory or Intercom.
  • Personal identifiers — without an opt-in account the extension has no idea who you are. With an account we know only the email you provided when registering on sofair.ai.
  • Cookies or login data from third-party sites.

Permissions requested by the extension

  • activeTab — grants access to the current tab's URL only at the moment you click the icon. Does not run in the background and does not track navigation.
  • scripting — lets us run a local check (JSON-LD parse, fetch /llms.txt) inside the active page, triggered by your click.
  • storage — used to cache scan results in chrome.storage.local. The cache lives in your browser; it is never sent to the server.

How to delete your data

Removing the extension from Chrome automatically clears all locally stored data (cache, opt-in toggles). The hashed IP entries in our logs rotate under Sofair's standard retention policy — they cannot be linked back to you once the extension is uninstalled.

Contact

Questions about this policy: [email protected].