Privacy Policy

Konexion ("we," "our," "us") provides a personal relationship management service available through the konexion.io website and a companion Chrome Extension. This Privacy Policy explains what data we collect, how we use it, and how we protect your privacy when you use our services.

1. Overview

2. Information We Collect

a. Account Information

When you create an account, we collect:

• Your email address (for login, authentication, and notifications).
• Your name (optional, for personalization).
• Your password (stored as a secure hash) or Google account ID if you log in via OAuth.

b. Contact & Interaction Data

You may choose to add contacts, interactions, reminders, or notes manually or via the Konexion Chrome Extension. This information is stored privately in your account and is never shared with third parties.

c. Browser Extension

The Konexion Chrome Extension:

• Runs only on pages you visit on linkedin.com and konexion.io.
• Displays a Konexion button and optional contact panel.
• May read publicly visible LinkedIn profile data on pages you view to assist you in saving contacts — but only when you click the Konexion button.
• Does not monitor browsing activity, track pages visited, or collect unrelated data.

d. Usage & Technical Data

To improve performance and reliability, we may collect:

• Standard server logs (IP address, browser type, error codes).
• Anonymous metrics (e.g., total number of active users, API response times).

No tracking cookies or third-party analytics scripts are used.

3. How We Use Your Information

We use your information only to:

• Provide and maintain your Konexion account.
• Authenticate your access (via JWT/Bearer tokens).
• Display your data in the Chrome Extension and web app.
• Send essential account or service notifications (e.g., password resets, feature updates).

We do not:

• Sell or rent your data.
• Use it for advertising.
• Access or process it for any purpose beyond the operation of the service.

4. Data Storage & Security

• All data is stored securely in the European Union.
• Connections use HTTPS encryption end-to-end.
• Passwords are hashed; authentication uses stateless JWT tokens.
• We do not store plaintext credentials or OAuth tokens beyond what is required for login.
• Access to data is restricted to authorized personnel for support or maintenance only.

5. Data Sharing

We do not share personal data with third parties except:

• When required by law (e.g., valid legal request).
• When necessary to operate the service (e.g., email provider for account verification or notifications).

6. Your Rights

Under the EU General Data Protection Regulation (GDPR), you have the right to:

• Access, correct, or delete your data.
• Export your data in a structured format.
• Withdraw consent or close your account at any time.

Requests can be made by contacting privacy@konexion.io.

7. Data Retention

We retain your account data only as long as your account remains active. If you delete your account, all associated data (contacts, reminders, interactions) will be permanently erased within 30 days.

8. Cookies & Tracking

Konexion does not use advertising cookies or cross-site tracking technologies. Session management relies solely on secure tokens stored locally in your browser (not cookies).

9. Third-Party Services

The extension and web app may interact with:

• LinkedIn — to read profile data that you manually choose to import.
• Google APIs — for optional sign-in via Google OAuth and address lookup (Maps Autocomplete via server proxy).

These services have their own privacy policies and are not controlled by Konexion.

10. Children's Privacy

Konexion is not intended for use by individuals under 16 years of age.

11. Updates to this Policy

We may update this Privacy Policy to reflect product or legal changes. When we do, we will update the "Effective Date" and notify users of material updates via email or in-app notice.