Privacy Policy
Last updated: June 12, 2026
Privacy Policy
ReFind is designed around user-initiated saving and bookmark management. The extension does not continuously read browsing history, does not run scheduled bookmark uploads, and does not collect webpage content unless you choose to save a page, enter a save reason, import bookmarks, sign in for account migration, delete a matching browser bookmark, or submit feedback.
Information We Process
- Personally identifying information: email address, account identifier, nickname, membership tier, and optional feedback email when you create an account, sign in, use Google sign-in, or send feedback.
- Authentication information: password data is sent only to the ReFind API for registration, sign-in, or password changes and is not stored in extension local or sync storage. Google OAuth access tokens are sent to the ReFind API only to verify sign-in.
- Current page URL and title: read when you click save, use the context menu, or trigger a save shortcut.
- Website content: saved page content and generated summaries are processed by the configured ReFind API service only after you save a page, so summaries, tags, categories, and save reasons can be generated.
- Bookmark information: bookmark title, URL, and original saved time are read only for user-started import, sign-in account migration, or user-triggered deletion of a matching browser bookmark. Invalid URLs are filtered and duplicate URLs are skipped.
- Extension settings and preferences: API endpoint, user identifier, account email, reminder interval, manual frequent-site choices, hidden-site choices, import state, and related preferences.
- Saved collection and usage data: title, URL, summary, tags, notes, content category, site category, save reason, source name, creation time, open count, and recent opened time for saved items and frequent-site ranking.
- Frequent-site sync data: manually added frequent sites, including site title, host, URL, saved time, and related display preferences, may be synced through the configured ReFind API service so the same account can use them across browsers.
- Feedback and diagnostics: feedback type, message, optional email, source, timestamps, and basic request information needed to operate, secure, and troubleshoot the service.
Chrome Extension Permissions
- storage stores extension settings and account convenience fields.
- activeTab and tabs read the current tab title and URL for user-initiated saving.
- bookmarks supports user-started import, sign-in migration, and user-requested deletion of matching browser bookmarks.
- identity supports Google account sign-in.
- contextMenus, notifications, and alarms support save shortcuts, confirmations, quota notices, and reminder notifications.
- host permissions allow the extension to connect to the configured ReFind API service, including the default production service at https://api.refind.cc/api.
How We Use Information
- Save and organize webpages that you choose to collect.
- Generate summaries, tags, categories, and save reasons.
- Provide search, category browsing, frequent-site ranking and sync, reminders, import, account migration, account, and feedback features.
- Connect the extension to the API service configured by the user or by the released product.
- Maintain security, prevent abuse, troubleshoot issues, and improve product reliability.
Storage and Retention
The extension stores only necessary settings locally in the browser. A small account snapshot may be stored in browser sync storage so the same account can be restored across browser profiles; passwords and Google tokens are not stored there. Saved collection content, imported bookmark records, open counts, recent opened times, manually added frequent sites, feedback, and account service data are stored by the configured ReFind API service when needed to provide sync and product functionality.
Saved collections remain available until you delete them or request deletion. Local extension settings remain until you clear extension data or uninstall the extension. Feedback and service logs are retained only as long as needed for support, security, abuse prevention, and legal or operational requirements.
Sharing and Third-Party Services
ReFind does not sell personal data and does not use collected data for unrelated advertising. Data may be processed by service providers only to deliver requested product functionality, including cloud hosting, database storage, email or account infrastructure, security monitoring, and AI providers that generate summaries, tags, categories, and save reasons for pages you save or bookmarks you import.
When you use Google sign-in, Google provides account authentication data to ReFind according to Google's terms and privacy policy. ReFind uses that data only to sign you in and maintain your account.
User Controls
- You can edit the API endpoint in settings where the product build allows it.
- You can delete saved collections from the extension.
- You can optionally remove a matching browser bookmark when deleting a saved ReFind item.
- You can remove local extension settings by clearing extension data or uninstalling the extension.
- You can disable or adjust reminder intervals.
- You can contact support to request account or server-side data deletion where self-service deletion is not available.
Children's Privacy
ReFind is not intended for children under 13. We do not knowingly collect personal information from children under 13.
Changes to This Policy
We may update this policy when product features, legal requirements, or service providers change. The updated date on this page indicates the latest version.
Contact
If you have privacy questions or requests, please contact us through the official ReFind website or the support channel listed in the Chrome Web Store listing.
隐私政策
可循围绕用户主动收藏和书签管理来处理数据。插件不会在后台持续读取浏览历史,不会定时上传浏览器书签,也不会在用户未触发收藏网页、填写收藏原因、导入书签、登录进行账号迁移、删除匹配浏览器书签或提交反馈时主动收集网页内容。
我们处理的信息
- 个人身份信息:用户创建账号、登录、使用 Google 登录或提交反馈时处理邮箱、账号 ID、昵称、会员等级和可选反馈邮箱。
- 认证信息:密码仅在注册、登录或修改密码请求中发送到可循 API,不会保存在插件本地或浏览器同步存储中。Google OAuth 访问令牌仅发送到可循 API 用于验证登录。
- 当前页面 URL 和标题:用户点击收藏、使用右键菜单或快捷键收藏时读取。
- 网页内容:只有在用户保存网页后,配置的可循 API 服务才会处理页面内容和生成摘要,用于生成摘要、标签、分类和收藏理由。
- 书签信息:仅在用户主动导入、登录迁移或主动删除匹配浏览器书签时读取书签标题、URL 和原始收藏时间。导入时会过滤无效链接并跳过重复 URL。
- 插件设置与偏好:API 地址、用户标识、账号邮箱、提醒间隔、手动常用网站、隐藏网站、导入状态和相关偏好。
- 收藏与使用数据:标题、URL、摘要、标签、备注、内容分类、网站分类、收藏理由、来源名称、创建时间、打开次数,以及用于常用网站排序的最近打开时间。
- 常用网站同步数据:用户手动添加的常用网站,包括站点标题、域名、URL、添加时间和相关显示偏好,可能会通过配置的可循 API 服务同步,以便同一账号在不同浏览器中使用。
- 反馈与诊断信息:反馈类型、内容、可选邮箱、来源、时间戳,以及维持服务、安全和排障所需的基础请求信息。
Chrome 扩展权限用途
- storage 用于保存扩展设置和账号便捷字段。
- activeTab 和 tabs 用于在用户主动收藏时读取当前标签页标题和 URL。
- bookmarks 用于用户主动导入、登录迁移,以及用户要求删除匹配浏览器书签。
- identity 用于 Google 账号登录。
- contextMenus、notifications 和 alarms 用于右键收藏入口、操作确认、容量提醒和回顾提醒。
- host permissions 用于连接配置的可循 API 服务,包括默认生产服务 https://api.refind.cc/api。
信息用途
- 保存和整理用户主动收藏的网页。
- 生成摘要、标签、分类和收藏理由。
- 提供搜索、分类浏览、常用网站排序与同步、提醒、导入、账号迁移、账号和反馈功能。
- 根据用户设置或正式发布配置连接指定 API 服务。
- 维护安全、防止滥用、排查问题并提升产品可靠性。
存储与保留
插件本地只在浏览器中保存必要设置。少量账号快照可能会保存在浏览器同步存储中,用于在不同浏览器配置中恢复同一账号;密码和 Google 令牌不会保存在其中。收藏内容、导入书签记录、打开次数、最近打开时间、手动添加的常用网站、反馈和账号服务数据会在提供同步和产品功能所需时由配置的可循 API 服务保存。
已保存收藏会保留到用户删除或请求删除为止。本地扩展设置会保留到用户清除扩展数据或卸载插件为止。反馈和服务日志仅在支持、安全、防滥用、法律或运营要求所需期间保留。
共享与第三方服务
可循不会出售个人数据,也不会将收集的数据用于无关广告。数据可能仅为提供用户请求的产品功能而由服务商处理,包括云托管、数据库存储、邮件或账号基础设施、安全监控,以及为用户保存网页或导入书签生成摘要、标签、分类和收藏理由的 AI 服务商。
当用户使用 Google 登录时,Google 会根据其条款和隐私政策向可循提供账号认证数据。可循仅将这些数据用于登录和维护账号。
用户控制
- 用户可以在产品构建允许的情况下于设置页修改 API 地址。
- 用户可以在插件中删除已保存收藏。
- 删除可循收藏时,用户可以选择同时删除匹配的浏览器书签。
- 用户可以通过清除扩展数据或卸载插件移除本地扩展设置。
- 用户可以关闭或调整提醒间隔。
- 当没有自助删除入口时,用户可以联系支持渠道请求删除账号或服务端数据。
儿童隐私
可循不面向 13 岁以下儿童。我们不会故意收集 13 岁以下儿童的个人信息。
政策变更
当产品功能、法律要求或服务商发生变化时,我们可能更新本政策。本页面顶部的更新日期表示最新版本。
联系方式
如有隐私相关问题或请求,请通过可循官方网站或 Chrome 应用市场详情页列出的支持渠道联系我们。