Privacy Policy
Synchora | MxSync & TimePulse
Last updated: April 2026
Table of Contents
Introduction
Synchora ("we", "our", or "us") operates two Chrome browser extensions: MxSync (an AI-powered LinkedIn messaging assistant) and TimePulse (a LinkedIn activity analyzer). This Privacy Policy explains what data we collect, how we use it, who we share it with, and your rights as a user. By installing or using either extension, you agree to the practices described in this policy.
What Data We Collect
2.1 — Account & Identity Data
When you register for a free trial or activate a license, we collect:
- Your email address — used to identify your account, send your verification code, and manage your trial or subscription status.
- A one-time verification code (OTP) — used only to verify your email. OTP codes are never stored after verification is complete.
- Your email address provided during payment — when you subscribe via Razorpay, your email is stored in Firebase to activate your license and send a payment confirmation email.
2.2 — Usage Data
To enforce fair usage limits, we track:
- Number of AI requests made per day and per month, associated with your email address.
- Your installation date, to calculate your 7-day free trial window.
- Your subscription plan and license verification timestamp.
This data is stored in Firebase (Google Cloud) and synced across your devices via Chrome's built-in sync storage.
2.3 — Message Content (MxSync only)
When you click the AI Reply button in LinkedIn messaging:
- Your draft message text is sent to our AI proxy server (hosted on Google Cloud) and processed by the Llama AI model (via Groq) to generate reply suggestions.
- Your draft message text is also sent to LanguageTool (api.languagetool.org) for grammar and spelling correction.
Message content is processed in real time and is NOT stored on our servers. It is used solely to generate your reply suggestions and is discarded immediately after.
2.4 — LinkedIn Activity Data (TimePulse only)
When you click Analyze on a LinkedIn profile:
- TimePulse reads the publicly visible post activity of that profile — specifically post timestamps — to calculate their peak posting hours.
- To access this data, TimePulse uses your active LinkedIn session (the same session your browser already maintains) and runs entirely within the current LinkedIn tab to fetch publicly available activity data on your behalf.
- No LinkedIn login credentials or passwords are ever accessed or stored by us.
- Analyzed activity data (post timestamps and calculated peak hours) is cached locally in your browser for up to 6 hours for performance, then automatically deleted.
- This data is never sent to our servers.
2.5 — Technical & Device Data
We detect your device timezone to determine regional pricing and usage limits. No device identifiers, IP addresses, or browser fingerprints are collected or stored.
How We Use Your Data
We use the data we collect for the following purposes only:
- To verify your email and activate your free trial or license.
- To track and enforce usage limits (daily and monthly request quotas) to ensure fair service for all users.
- To generate AI-powered reply suggestions using your draft message content (MxSync).
- To analyze and display LinkedIn posting activity patterns for profiles you choose to view (TimePulse).
- To send transactional and lifecycle emails as part of operating the service. These include: your OTP verification code, trial activation confirmation, trial progress reminders (day 2, day 6), trial expiry notification, and subscription renewal reminders. You can opt out of non-transactional emails at any time by contacting us at synchora.in@gmail.com.
- To apply region-appropriate usage limits based on detected timezone.
We do not use your data for advertising. We do not sell, rent, or trade your personal data to any third party.
Third-Party Services We Use
To provide our extensions' features, we share certain data with the following trusted third-party services:
Google Firebase (Firebase Cloud Functions & Firestore)
Purpose: Stores your email address, trial/license status, and usage counts. Hosted on Google Cloud (us-central1 region).
Privacy Policy: firebase.google.com/support/privacy
Groq (via our proxy server)
Purpose: Processes your draft message text to generate AI reply suggestions. Data is not retained by Groq beyond the API request.
Privacy Policy: groq.com/privacy
LanguageTool
Purpose: Checks grammar and spelling of AI-generated reply text. Only AI-generated reply suggestions are sent to LanguageTool for grammar checking. Your original typed message is not sent to LanguageTool
Privacy Policy: languagetool.org/legal/privacy
Razorpay
Purpose: Processes subscription payments. We do not store your payment details. All payment data is handled directly by Razorpay.
Privacy Policy: razorpay.com/privacy
Data Storage & Retention
- Your email address and license/trial data are stored in Firebase until you request deletion.
- Usage counters (daily/monthly request counts) are reset automatically on a daily and monthly basis.
- LinkedIn activity analysis (TimePulse) is stored only in your local browser storage for up to 6 hours and is never sent to our servers.
- OTP verification codes are never stored after use.
- If you uninstall the extension, all locally stored data is removed from your device. Account data in Firebase can be deleted upon request (see Section 7).
Data Security
- All data transmission between the extension and our servers uses HTTPS encryption.
- Email addresses stored in Firebase are protected by Google Cloud's security infrastructure.
- We do not store message content, LinkedIn session tokens, or CSRF tokens on our servers at any point.
- OTP codes expire after a short time and are single-use only.
Your Rights & Data Deletion
You have the following rights regarding your personal data:
- Access: Request a copy of what data we hold about you.
- Correction: Request correction of inaccurate data.
- Deletion: Request complete deletion of your account data from our systems.
- Portability: Request your data in a portable format.
To exercise any of these rights, email us at: synchora.in@gmail.com. We will respond within 7 business days. For deletion requests, we will remove your email and all associated data from Firebase within 14 business days. Users in the European Union (GDPR) and India (DPDP Act 2023) have additional rights under their applicable laws. Please contact us for assistance.
Children’s Privacy
Our extensions are not intended for users under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us at synchora.in@gmail.com and we will delete it promptly.
Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the 'Last Updated' date at the top of this page. We encourage you to review this policy periodically. Continued use of our extensions after changes are posted constitutes your acceptance of the updated policy.