Privacy Policy
AI Image Enhancement for Webflow

1. INTRODUCTION

This Privacy Policy describes how the AI Image Enhancement extension for Webflow ("Extension", "Service", "we", "our") handles your personal information and data. We are committed to protecting your privacy and being transparent about our data practices.

2. INFORMATION WE DO NOT COLLECT

2.1 Personal Information

We do NOT collect, store, or process:

• Names, email addresses, or contact information
• User accounts or authentication data
• Demographic or profile information
• Usage analytics or behavioral data
• Device fingerprints or tracking identifiers

2.2 API Keys and Credentials

• Your Google AI Studio API key is stored only in your browser (either in memory or optionally in localStorage if you choose)
• We never transmit, store, or have access to your API credentials on our servers
• Optional localStorage: You can choose to save your API key in browser localStorage for convenience
• Security Warning: localStorage is not encrypted and may be accessible to other scripts - use at your own risk
• Default Behavior: By default, API keys are only stored in memory and cleared when you close the extension
• User Control: You have full control over whether your API key is persisted locally

2.3 Images and Content

• We do NOT store, cache, or process your images on our servers
• Images are transmitted directly from your browser to Google's AI services
• We never have access to your image content or AI prompts
• Enhanced or generated images are handled entirely within your browser session

2.4 Webflow Data

• We do NOT access your Webflow account information
• We do NOT store information about your Webflow sites or projects
• We only interact with the selected image elements you choose to enhance

3. HOW THE EXTENSION WORKS (DATA FLOW)

3.1 API Key Handling

1. 1.Input: You enter your Google AI Studio API key in the onboarding screen
2. 2.Validation: The extension validates the key format locally (checks if it starts with "AIza")
3. 3.Storage Choice: You can choose to store the key in memory only (default) or optionally in browser localStorage
4. 4.Storage: The key is stored in your browser's memory (React state) and optionally in localStorage if you enable it
5. 5.Usage: The key is used to authenticate directly with Google's AI services
6. 6.Clearing: Keys stored in memory are cleared when you close the extension; localStorage keys persist until manually cleared

3.2 Image Processing Flow

1. 1.Selection: You select an image element in your Webflow project
2. 2.Upload: (Generate mode) You optionally upload reference images
3. 3.Processing: Images and prompts are sent directly to Google's Gemini API using your credentials
4. 4.Response: AI-generated content is returned directly to your browser
5. 5.Application: You choose whether to apply the results to your Webflow project

4. THIRD-PARTY SERVICES

4.1 Google AI Studio / Gemini API

• Data Shared: Images, text prompts, and your API key (for authentication)
• Purpose: AI image enhancement and generation processing
• Their Policies: Google's AI Studio Terms of Service and Privacy Policy apply
• Our Role: We facilitate the connection but do not process or store this data
• Direct Relationship: You have a direct contractual relationship with Google

4.2 Webflow Platform

• Data Shared: Enhanced images applied to your selected elements
• Purpose: Integration with Webflow Designer interface
• Their Policies: Webflow's Terms of Service and Privacy Policy apply
• Our Role: We use Webflow's Designer Extension APIs to interact with selected elements
• Permissions: Only accesses image elements you explicitly select

4.3 No Other Third Parties

• We do NOT integrate with analytics services (Google Analytics, etc.)
• We do NOT use tracking or marketing tools
• We do NOT share data with advertising networks
• We do NOT use customer support platforms that might collect data

5. LOCAL BROWSER STORAGE

5.1 What We Store Locally

The extension may store the following only in your browser:

• User interface preferences (theme, settings)
• Extension state during your session
• Temporary image previews for the user interface
• Your API key (ONLY if you choose the "Remember API key" option during setup)

5.2 What We Do NOT Store Locally

• Your API key (by default - only stored if you explicitly enable the "Remember API key" option)
• Your images or AI-generated content
• Your Webflow account information
• Usage history or analytics data

5.4 How to Clear Local Data

You can clear any locally stored data by:

• Using the "Clear API Key" option in the extension's navigation menu
• Clearing your browser's cache and cookies
• Using your browser's developer tools to clear local storage
• Uninstalling and reinstalling the extension

To clear saved API keys specifically: Use the "Clear API Key" button in the extension's menu, which will remove both the in-memory token and any saved localStorage data.

6. OPEN SOURCE TRANSPARENCY

6.1 Code Transparency

• This extension is open source under the MIT License
• All source code is publicly available on GitHub
• You can inspect exactly how your data is handled

6.2 No Hidden Data Collection

• There are no hidden tracking scripts or data collection mechanisms
• The codebase can be audited by anyone
• All third-party integrations are clearly documented

7. DATA SECURITY

7.1 Our Security Measures

• No servers to secure: We don't store data, so there's no server-side security risk
• Client-side only: All data handling happens in your secure browser environment
• Direct API connections: Your data goes directly to Google using secure HTTPS connections
• No man-in-the-middle: We don't intercept or process your data in transit

7.2 Your Security Responsibilities

• API Key Security: Keep your Google AI Studio API key secure and don't share it
• Browser Security: Use a secure, up-to-date browser
• Network Security: Use secure internet connections when processing sensitive images

7.3 Google's Security

• Your images and prompts are protected by Google's enterprise-grade security
• Google's privacy and security policies apply to data they receive
• We recommend reviewing Google's AI Studio privacy documentation

10. YOUR PRIVACY RIGHTS

10.2 Rights You Have Directly

• Control: You have complete control over what data you share with the extension
• Transparency: You can inspect our open-source code to verify our practices
• Choice: You can stop using the extension at any time without data consequences
• Google Rights: You have rights regarding data processed by Google under their policies

10.3 For EU/GDPR Users

• We are NOT a data controller or processor of your personal data
• Google acts as the data processor for images and prompts you send to their API
• You maintain control as the data controller for any personal data in your images
• You should ensure you have proper legal basis before processing personal data through AI services

10.4 For California/CCPA Users

• We do NOT sell personal information (we don't collect it)
• We do NOT share personal information for marketing purposes
• There are no "Do Not Sell" opt-outs needed (we don't sell data)

12. CONTACT INFORMATION

12.1 Privacy Questions

For questions about this Privacy Policy or our privacy practices:

• GitHub Issues: Open an issue on our repository
• Email: bat.weblfow.ai.image@gmail.com

12.2 Third-Party Privacy Questions

For questions about how third-party services handle your data:

• Google AI Studio: Google's Privacy Policy
• Webflow: Webflow's Privacy Policy