Privacy Policy

1. What We Collect

When you sign in via Google OAuth, we receive your email address, display name, and profile picture. We do not store your Google password.

When you use the Layr browser extension, we collect:

• Annotations you create (text, position, URL)
• Reactions, replies, and @mentions
• Pages you annotate (URL and domain)
• Credit balance and transaction history

2. How We Use Your Data

• Display your annotations to other Layr users
• Power AI features (page summaries, semantic search) using anonymized content
• Moderate content for safety (via AI moderation)
• Send you notifications about activity on your annotations
• Process payments via Stripe (we never store card details)

3. Data Storage

Your data is stored on Supabase (PostgreSQL) with row-level security. Files (avatars, images) are stored in Supabase Storage. All data is encrypted in transit (TLS) and at rest.

4. Third-Party Services

• Supabase — database, authentication, file storage
• Google OAuth — sign-in
• Anthropic (Claude) — AI moderation and features
• Stripe — payment processing
• Vercel — web hosting

5. Your Rights

You can:

• Access and export your data at any time
• Edit or delete your annotations
• Delete your account by contacting us
• Opt out of AI features by not using credits

6. Cookies

We use essential cookies for authentication sessions. We do not use tracking cookies or third-party analytics.

7. Children

Layr is not intended for users under 13. We do not knowingly collect data from children.

8. Contact

For privacy concerns, contact us at contact@layr.community.