Privacy & Security Policy - Textalyz
Effective Date: June 03, 2025
1. Overview
Textalyz is an AI-powered tool available as both a Chrome Extension and a Slack App. We are committed to protecting your privacy and handling your data responsibly.
We follow all applicable data handling and security standards, including:
We collect only the data we need to provide our core features — and nothing more.
2. What We Collect & Why
Authentication Tokens
- Used to identify users, authenticate access to their Textalyz workspace, and track subscriptions or usage.
- Stored securely (locally via Chrome, or server-side via encrypted storage).
Tab Metadata (Chrome Extension only)
- We use tabs and activeTab permissions to detect which tab is active and enable or disable the extension contextually.
- This metadata is used transiently during your session and is not stored.
Slash Command Input (Slack only)
- When you use the /send command in Slack, we process the message in real-time to provide grammar correction, rephrasing, formatting, or translation suggestions.
- We do not store the message text or responses unless you explicitly save it to your Textalyz workspace.
🚫 We Do NOT Collect:
- Your browsing history
- AI-generated messages, summaries, or rewrites
- Slack message history, channels, files, or conversations
- Any personal or sensitive data, unless explicitly submitted by the user
- Any text on websites, unless you manually select and invoke the extension
3. Chrome Extension Permissions
To provide core features, the Chrome Extension uses the following permissions:
Permission | Purpose |
storage | Store the auth token securely on your device |
tabs, activeTab | Enable the extension contextually based on active websites |
host_permissions (https://*/*, http://*/*) | Allow Textalyz to run on any website where you might write content |
These permissions do not allow access to your browsing history or personal activity.
4. Slack App Integration
We follow Slack’s Marketplace Security Guidelines and adhere to best practices:
- Only access data submitted by the user through the /send command
- Do not access messages, channels, files, or history outside of the command context
- Auth tokens are encrypted and stored securely
- No user content is stored unless explicitly saved to your Textalyz workspace
- Users can revoke access at any time through Slack settings
All data is processed in real-time and discarded unless needed for essential workspace features (like usage tracking or subscriptions).
5. Third-Party Services
- We use Paddle for payment processing on paid plans. Billing data is handled securely via Paddle and not stored on our servers. (Paddle’s Privacy Policy)
- We do not currently use analytics or monitoring tools like Google Analytics or Sentry.
- If future third-party services (e.g., error monitoring or usage analytics) are added, this policy will be updated accordingly.
6. Data Security
- All interactions with Textalyz (Chrome or Slack) are encrypted via HTTPS
- Tokens are encrypted both in transit and at rest
- No personal user content or text is stored without user consent
- Workspace-level data (e.g., plan status, usage limits) is kept minimal and secured.
7. Your Rights & Controls
You have full control over your data:
- Revoke Chrome Extension permissions via chrome://extensions
- Revoke Slack access via Slack’s “Apps” tab
- Request deletion of your account, token, or workspace data at any time by emailing us at dev@studiodevhub.com
8. Changes to This Policy
We may update this policy as our platform evolves. Any significant changes will be communicated via product updates or email (if you’ve registered)..
📬 Need Help or Have Questions?
Email us anytime at dev@studiodevhub.com
We’re happy to explain how we protect your data.
📧 Email us at: dev@textalyz.com
