隱私權政策

LearnSync Privacy Policy

Last Updated: December 19, 2025
Effective Date: December 19, 2025
Product: LearnSync Chrome Extension v1.0+

1. Overview

LearnSync ("we," "us," "our") is committed to protecting your privacy.
This Privacy Policy explains how we handle your information when you use
the LearnSync Chrome extension ("Extension," "Service").

Our Core Principle:
Your data belongs to you. We store everything locally on your device.
Period. No cloud uploads. No third-party sharing.

2. What Information We Collect

2.1 Information You Voluntarily Provide

• Your Hahow account username/display name

• Your 知識衛星 account username/display name

• Your course enrollment list

• Your course progress data

2.2 Information We Automatically Collect

• Course titles and descriptions

• Course completion percentages

• Lesson and module progress

• Timestamps of your progress updates

• Your browser's session cookies (to verify login status)

2.3 What We DON'T Collect

• ✅ Your passwords (we never store these)

• ✅ Personal identification numbers

• ✅ Payment or credit card information

• ✅ Your real name or email address (except as displayed on platform)

• ✅ Your browsing history on other websites

• ✅ Your device location

• ✅ Your device identifiers

3. How We Use Your Information

Purpose: Provide Core Service

• ✅ Display your unified course dashboard

• ✅ Track your progress across platforms

• ✅ Sync your data in real-time

• ✅ Generate progress statistics

• ✅ Maintain synchronization history

Purpose: Maintain Service

• ✅ Ensure functionality works properly

• ✅ Fix bugs and improve performance

• ✅ Respond to your support requests

Purpose: NEVER

• ❌ Sell your data to third parties

• ❌ Use your data for advertising

• ❌ Share with marketing agencies

• ❌ Train AI models on your data

• ❌ Combine with other datasets

• ❌ Use for credit decisions

• ❌ Use for discrimination or targeting

4. Data Storage and Security

Storage Location

All your data is stored locally on your device.

We use Chrome's local storage API (chrome.storage.local):

• Stored in your browser's extension storage folder

• Not synced to cloud services

• Not accessible to other extensions

• Not readable by websites

Data Retention

• During Use: Data persists until you clear it

• After Uninstall: All data automatically deleted

• Manual Delete: You can clear data anytime in settings

• No Backups: We don't back up your data

Security Measures

• ✅ Local encryption for sensitive data

• ✅ HTTPS for all external communication

• ✅ No plaintext storage of tokens

• ✅ Session-based authentication only

• ✅ Regular security audits

• ✅ Vulnerability disclosure program

5. Permissions Explained

storage

Purpose: Save your course progress, preferences, and settings locally
Use: Store progress snapshots, sync history, user preferences
Data Shared: None (local only)

activeTab

Purpose: Detect when you're on Hahow or 知識衛星 course pages
Use: Know when to sync your progress
Data Shared: None (internal detection only)

tabs

Purpose: Monitor which course platforms you have open
Use: Track multiple simultaneous courses
Data Shared: None (internal tracking only)

cookies

Purpose: Read existing platform session cookies
Use: Verify you're logged in to access your courses
Data Shared: None (read-only, not transmitted)

scripting

Purpose: Extract course data from page content
Use: Read course titles, progress, lesson completion
Data Shared: None (extracted locally)

host_permissions (hahow.in, sat.cool)

Purpose: Access Hahow and 知識衛星 course pages
Use: Read course information and your progress
Data Shared: None (read-only access)

6. Third-Party Services

What We Use

• Chrome APIs (official Google APIs)

• Hahow API (as per their terms)

• 知識衛星 API (as per their terms)

What We DON'T Use

• No Google Analytics

• No Mixpanel

• No Amplitude

• No Segment

• No advertising networks

• No social media trackers

• No third-party analytics

7. Data Retention

Your Progress Data

Retention: Until you delete it
Deletion Method: Manual (Settings → Clear All Data)
Backup: Never backed up

Sync History

Retention: Last 30 days (configurable)
Deletion Method: Automatic after 30 days
Manual Delete: Delete anytime in settings

Cache Data

Retention: Until cleared
Deletion Method: Automatic on extension update

8. Your Privacy Rights

Right to Access

You can access all your data anytime through the LearnSync interface.

Right to Delete

You can delete all your data anytime in Settings → Clear All Data.

Right to Export

You can export your complete data as JSON for backup.

Right to Opt-Out

You can disable syncing anytime. Extension stops collecting data immediately.

Right to Complaints

If you have privacy concerns, contact: privacy@learnsync.app

9. Children's Privacy

LearnSync is not directed to users under 13. We don't knowingly collect
information from children under 13. If we learn we've collected data
from a child, we'll delete it immediately.

10. International Compliance

GDPR (European Union)

LearnSync complies with GDPR principles:

• ✅ Lawful basis: Necessary for service

• ✅ User consent: Opt-in before first use

• ✅ Data minimization: Collect only necessary data

• ✅ Right to erasure: Delete anytime

• ✅ Data portability: Export your data

CCPA (California)

LearnSync complies with CCPA requirements:

• ✅ Notice of collection practices

• ✅ Right to know what data is collected

• ✅ Right to delete personal information

• ✅ Right to opt-out of sales (we don't sell)

• ✅ Non-discrimination for exercising rights

PIPEDA (Canada)

LearnSync complies with PIPEDA principles:

• ✅ Accountability: Clear privacy practices

• ✅ Identifying purpose: Transparent data use

• ✅ Consent: Optional analytics only

• ✅ Limited collection: Minimal data collection

• ✅ Accuracy: Data quality assurance

• ✅ Access: Users can access their data

• ✅ Challenging accuracy: Users can update data

• ✅ Security: Data protection measures

11. Data Protection Commitments

We Guarantee

☑ No sharing of data with third parties
☑ No use for non-service purposes
☑ No use for credit decisions or profiling
☑ No combination with third-party data
☑ No selling of user data
☑ No AI training on user data
☑ Complete data ownership by users

You Control

☑ What data is collected
☑ How long data is stored
☑ When data is deleted
☑ Whether to use the service
☑ Your sync preferences
☑ Your privacy settings

12. Changes to This Policy

We may update this policy occasionally. We'll:

• ✅ Notify you of material changes

• ✅ Give you time to review

• ✅ Allow you to opt-out if needed

• ✅ Update the "Last Updated" date above

Continued use means you accept the new policy.

13. Contact Us

Questions?

📧 Email: privacy@learnsync.app
💬 Support: support@learnsync.app
🐛 Report Issues: github.com/learnsync/issues

Privacy Matters?

📧 Privacy Officer: privacy@learnsync.app
⏱️ Response Time: 48 hours maximum

Complaints?

Contact your local data protection authority or reach out to us directly.

Document Version: 1.0
Effective Date: December 19, 2025
Last Updated: December 19, 2025
Compliance: GDPR, CCPA, PIPEDA Compliant ✅