Legal · Privacy Policy

Your privacy is not negotiable.

We built Lipi on a simple belief — your prompts, your conversations, and your data belong to you. Here's exactly how we honour that.

Effective: 23 June 2026
Last updated: 23 June 2026
Version 1.0
Applies to: Lipi Chrome Extension
📅 Last updated: 23 June 2026 · Version 1.0
Section 01

Our Core Promise

🔒
Your prompts are yours. Always.
Lipi reads your chatbox to count tokens and compress prompts. That text is processed locally in your browser and is never transmitted to Engramium's servers, never stored on our infrastructure, never read by our team, and never used for any purpose other than the feature you explicitly triggered. This is our most fundamental commitment and it will never change.

Lipi is built on the belief that you deserve to know what's happening with your AI usage — and that same transparency applies to how we handle your data. This Privacy Policy is written in plain language, not legal obfuscation. We want you to actually read and understand it.

By installing and using Lipi, you agree to the practices described in this policy. If you do not agree, please uninstall the extension. You can do so at any time from your Chrome extensions page (chrome://extensions).

Section 02

Who We Are

Lipi is a product of Engramium — a technology company built on the pursuit of excellence in AI tools and infrastructure. Engramium is the data controller responsible for your data under this policy.

🏢
Company
Engramium
🌐
📧
Privacy Contact
📍
Privacy Policy URL
Section 03

What This Policy Covers

This Privacy Policy applies to the Lipi Chrome Extension (the "Extension") and any related services, websites, or communications provided by Engramium under the Lipi product brand.

It covers your use of Lipi on all supported platforms including Claude (claude.ai), ChatGPT (chatgpt.com), Gemini (gemini.google.com), Grok (grok.x.com), and any other AI platforms Lipi integrates with in the future.

This policy does not cover the privacy practices of the AI platforms you use (Claude, ChatGPT, Gemini, Grok). Those are governed by their own privacy policies respectively.

Section 04

What We Collect

Lipi collects two categories of data: data stored locally on your device (never sent to us) and anonymised analytics (never linked to you personally).

4.1 Anonymised Usage Analytics

To improve Lipi and understand how features are used, we collect anonymised, non-identifiable analytics. This data cannot be traced back to any individual user.

Data Point What It Tells Us Personally Identifiable?
Feature interaction eventsWhich tabs, buttons, and toggles are usedNever
Active tab (Overview/Usage/Settings)Which sections users spend time inNever
Optimize button click rateHow often Prompt Intelligence is triggeredNever
Mode preference (Compress/Optimize/Both)Which compression mode is most popularNever
Platform detected (Claude/ChatGPT etc.)Which AI platforms are most used with LipiNever
Free vs Pro planConversion and upgrade patternsNever
Extension version numberAdoption of updatesNever
Error and crash eventsStability and bug identificationNever
Country (not city or region)Broad geographic distributionNever
Session duration (approximate)General engagement patternsNever
ℹ️
How we anonymise
All analytics events are stripped of any identifiers before transmission. We do not use cookies, fingerprinting, or persistent device IDs. Each event is a standalone signal — we cannot link events to a user, a session, or a browser profile. IP addresses are hashed and discarded immediately upon receipt.

4.2 Pro Account Data (Pro subscribers only)

If you subscribe to Lipi Pro, we collect the minimum data necessary to manage your subscription:

Data PointPurposeStored By
Email addressAccount identification and billing communicationsEngramium + Stripe
Payment informationSubscription billingStripe only — we never see card details
Subscription statusUnlocking Pro features in the extensionEngramium
Subscription start/end datesBilling cycle managementEngramium
Plan type (Pro Monthly/Annual)Feature access controlEngramium
⚠️
Payment security
Lipi never processes, stores, or sees your credit card or payment details. All payment processing is handled by Stripe, a PCI DSS Level 1 certified payment provider. Engramium only receives a tokenised subscription status from Stripe — never your financial information.
Section 05

What We Never Collect

This is the most important section of this policy. The following data is never collected, never transmitted to our servers, never stored by Engramium, and never shared with any third party — under any circumstances.

🚫
Absolute prohibitions — these never leave your device
The following data types are processed locally in your browser only. They are never sent to Engramium and never will be, regardless of future product changes. Any change to this commitment would require explicit opt-in consent from every user.
Data TypeWhy We Never Collect It
Your prompt contentYour words are yours. Lipi reads them locally to count tokens. They never leave your browser.
AI responses and conversationsYour AI conversations are private. We never read, store, or transmit any part of them.
Compressed or optimized prompt textEven after Lipi processes your prompt, the text never reaches our servers.
Browsing historyWe only activate on supported AI platforms — we never track what other sites you visit.
Personal identity informationNo name, age, gender, or demographic data is ever collected from free users.
IP addresses (stored)IP addresses are hashed and immediately discarded — never stored or linked to activity.
Precise locationWe detect country only (for analytics) — never city, region, or GPS coordinates.
Device fingerprintWe use no fingerprinting techniques of any kind.
Cross-site trackingLipi has no tracking pixels, beacons, or cross-site identifiers.
Clipboard contentWe never read your clipboard unless you explicitly click "Copy" inside Lipi's interface.
Token counts or costs per messageThese are calculated and displayed locally only — never reported to us.
Budget amounts you setYour financial preferences stay in Chrome local storage — never sent to us.
Prompt history entriesYour 20-entry prompt history lives in Chrome local storage on your device only.
Session or weekly usage dataYour Claude session data and limit tracking stays entirely local.
Cache timer dataCache window information is read from the page and displayed locally — never stored.
Model preferencesYour preferred models and settings are stored locally in Chrome storage only.
Switch to Save historyModel switching suggestions and history are never reported to us.
Children's dataLipi is not directed at children under 13. We never knowingly collect their data.
Section 06

What Stays on Your Device

Lipi uses Chrome's built-in storage APIs to store your preferences and history locally. This data lives exclusively on your device and is controlled entirely by you. Engramium has no access to it.

Data Stored LocallyStorage TypePurposeYou Can Delete It?
Stripe display preferenceschrome.storage.localRemember your toggle settingsYes — Settings tab
Theme (Light/Dark/Auto)chrome.storage.localRemember your appearance preferenceYes — Settings tab
Default mode (Compress/Optimize/Both)chrome.storage.localRemember your preferred Intelligence modeYes — Settings tab
Daily/monthly budget limitschrome.storage.localPower your budget alert systemYes — Settings tab
Currency preferencechrome.storage.localDisplay costs in your preferred currencyYes — Settings tab
Default platformchrome.storage.localOpen Lipi to your primary AI platformYes — Settings tab
Preferred cheap modelchrome.storage.localPower the Switch to Save suggestionYes — Settings tab
Keyboard shortcut preferenceschrome.storage.localCustom shortcuts for power usersYes — Settings tab
Prompt history (last 20)chrome.storage.localShow your Usage tab historyYes — Settings → Clear History
Session usage datachrome.storage.localTrack session progress and limitsYes — Settings → Reset Stats
Daily savings accumulatorchrome.storage.localTrack tokens saved today via compressionYes — resets daily automatically
Onboarding completion statuschrome.storage.localRemember if you've seen the welcome tourYes — Settings → Replay Onboarding
Pro sync settings (Pro only)chrome.storage.syncSync preferences across your Chrome profilesYes — Settings → Clear All
You own this data entirely
All locally stored data belongs to you. You can delete any or all of it at any time from the Settings tab inside Lipi, or by uninstalling the extension (which clears all local storage automatically). Engramium cannot access, read, or recover this data under any circumstances.
Section 07

Why We Collect What We Do

We only collect data we have a clear, legitimate reason for collecting. Here are our legal bases and purposes:

Data CategoryLegal BasisPurpose
Anonymised analyticsLegitimate interestUnderstand feature usage to improve Lipi
Error/crash reportsLegitimate interestIdentify and fix bugs before they affect users
Pro email addressContract performanceManage your subscription and send billing emails
Pro payment dataContract performanceProcess your subscription (handled by Stripe)
Pro subscription statusContract performanceUnlock the features you've paid for
Country (analytics only)Legitimate interestUnderstand broad geographic adoption patterns

We do not use your data for advertising, profiling, behavioural targeting, or any purpose other than those listed above. We do not sell your data. We never will.

Section 08

Feature-by-Feature Privacy Guide

Here is exactly what happens with your data for every major Lipi feature:

The Lipi Stripe

FeatureData UsedStays Local?Sent to Engramium?
Live token counterChatbox textarea contentLocal onlyNever
Real-time cost estimateToken count + model pricing tableLocal onlyNever
Session progress barMessage count from page DOMLocal onlyNever
Weekly usage barLocally stored session historyLocal onlyNever
Messages remainingSession data from page DOMLocal onlyNever
Reset countdown timerTimestamp from API stream (displayed only)Local onlyNever
Cache timerCache data from Claude API streamLocal onlyNever
Platform badgeCurrent URL / page DOMLocal onlyNever
✦ Optimize button (click)Button interaction eventAnonymised eventAnonymised count only
Chrome badge counterCurrent token countLocal onlyNever

Prompt Intelligence (Optimize + Compress)

FeatureData UsedStays Local?Sent to Engramium?
Reading from chatboxYour prompt textLocal onlyNever
Optimize step (Step 1)Prompt text sent to AI API of your choiceGoes to AI provider onlyNever to Engramium
Compress step (Step 2)Optimized text processed locally OR via AI APIProcessed locally where possibleNever to Engramium
Apply to ChatboxCompressed text injected into textareaLocal onlyNever
Copy to clipboardCompressed text written to clipboardLocal onlyNever
Mode selection (Compress/Optimize/Both)Mode preference saved locallyLocal + anonymisedAnonymised mode counts only
⚠️
Important: AI API calls during Optimization
When you use the Optimize feature, your prompt is sent to an AI language model API to perform the rewrite. This transmission goes directly from your browser to the AI provider — it does not pass through Engramium's servers. You should review the privacy policy of the AI API provider used for optimization. We will always disclose which provider powers the Optimize step in our documentation.

Usage Tab

FeatureData UsedStays Local?Sent to Engramium?
Prompt history (last 20)Truncated prompt preview + token count + costLocal onlyNever
All models comparison tableStatic pricing data bundled with extensionLocal onlyNever
Export usage CSVYour local prompt history and costsDownloaded to your deviceNever
Context window trackerConversation length from page DOMLocal onlyNever
Per-model request countersRequest counts from page DOMLocal onlyNever

Settings Tab

FeatureData UsedStays Local?Sent to Engramium?
All stripe togglesToggle statesLocal onlyNever
Budget limitsDollar amounts you setLocal onlyNever
Currency preferenceCurrency codeLocal onlyNever
Theme preferenceLight/Dark/Auto choiceLocal onlyNever
Keyboard shortcutsKey bindingsLocal onlyNever
Settings sync (Pro)Preferences synced via chrome.storage.syncChrome sync only — not EngramiumNever to Engramium
Privacy mode toggleDisables prompt history storage entirelyLocal onlyNever
Clear historyDeletes local prompt historyDeleted from deviceNever transmitted
Feedback submissionYour feedback text + extension versionSent to Engramium supportYes — with your consent

Switch to Save

FeatureData UsedStays Local?Sent to Engramium?
Model cost comparisonStatic pricing table bundled with extensionLocal onlyNever
Suggested alternative modelCurrent model + pricing logicLocal onlyNever
Switch action (DOM)Clicks the model selector on the AI platformLocal onlyNever
Switch eventAnonymised "switch occurred" eventAnonymisedAnonymised count only

Budget Alerts

FeatureData UsedStays Local?Sent to Engramium?
Daily spend accumulatorEstimated cost per message × message countLocal onlyNever
Budget limit comparisonYour budget setting vs accumulated spendLocal onlyNever
Chrome badge colour changeBudget proximity percentageLocal onlyNever
Section 09

Third-Party Services

Lipi uses a minimal set of trusted third-party services. We are transparent about every one of them.

ProviderPurposeData SharedTheir Privacy Policy
StripePayment processing for Pro subscriptionsEmail + payment details (Pro users only)stripe.com/privacy
AI API Provider (TBD)Powers the Optimize step in Prompt IntelligenceYour prompt text when you click OptimizeDisclosed in documentation
Chrome Web Store (Google)Extension distribution and updatesInstall/update events (Google's own data)policies.google.com/privacy
Error monitoring (TBD)Anonymous crash reportingAnonymised error stack traces onlyDisclosed when selected
We will always disclose third parties
Whenever we add a new third-party service that touches any user data, we will update this policy, notify users via the extension's changelog, and give you at least 30 days notice before the change takes effect. We will never silently add data-sharing relationships.
Section 10

Data Sharing

✅ We share data with
Stripe — for Pro subscription billing only
AI API providers — your prompt, only when you click Optimize
Law enforcement — only when legally compelled, and we will notify you where permitted
A future acquirer — only in a merger/acquisition, and you will be notified
🚫 We never share data with
Advertisers — ever, under any circumstances
Data brokers — we do not sell your data
Marketing companies — your email is not for marketing lists
AI training datasets — your prompts are never used to train any model
Analytics companies — only anonymised, non-identifiable signals are transmitted
Other Engramium products — Lipi data stays within Lipi

We will never sell your data. This is not a policy position — it is a founding principle of Engramium.

Section 11

Data Retention

Data TypeRetention PeriodHow to Delete
Locally stored preferencesUntil you clear them or uninstallSettings → Clear All / Uninstall extension
Prompt historyUntil you clear it (max 20 entries)Settings → Clear History
Session usage dataResets daily automaticallySettings → Reset Stats
Anonymised analytics events90 days aggregated, then deletedCannot be individually deleted (anonymised)
Pro email addressDuration of subscription + 90 daysEmail privacy@engramium.com to request deletion
Pro subscription records7 years (legal financial obligation)Cannot be deleted within legal retention period
Support / feedback messages2 years from submissionEmail privacy@engramium.com to request deletion
Error / crash reports30 days then auto-deletedAnonymised — cannot be individually deleted
Section 12

Your Rights

Depending on where you are located, you may have the following rights regarding your personal data. We honour all of these regardless of your jurisdiction — because it's the right thing to do.

RightWhat It MeansHow to Exercise It
Right to AccessRequest a copy of all personal data we hold about youEmail privacy@engramium.com
Right to CorrectionRequest correction of inaccurate personal dataEmail privacy@engramium.com
Right to DeletionRequest deletion of your personal data ("right to be forgotten")Email privacy@engramium.com or uninstall extension
Right to PortabilityReceive your data in a machine-readable formatEmail privacy@engramium.com
Right to ObjectObject to processing based on legitimate interestEmail privacy@engramium.com
Right to RestrictRequest we limit how we use your dataEmail privacy@engramium.com
Right to Withdraw ConsentWithdraw any consent you have given at any timeUninstall extension / email us
Opt out of analyticsDisable anonymised usage analytics entirelySettings → Privacy Mode toggle
Right to ComplainLodge a complaint with your local data protection authorityContact your national DPA

We will respond to all data rights requests within 30 days. We will never charge a fee for exercising your rights unless a request is manifestly unfounded or excessive.

Section 13

Children's Privacy

Lipi is not directed at children under the age of 13 (or 16 in the European Union). We do not knowingly collect personal information from children under these ages.

If you are a parent or guardian and believe your child has provided personal information to us, please contact us immediately at privacy@engramium.com. We will promptly delete any such information.

If we become aware that we have inadvertently collected personal information from a child without parental consent, we will take steps to delete it as quickly as possible.

Section 14

Security

We take the security of your data seriously. Here are the measures we have in place:

Technical Measures
All data in transit encrypted via TLS 1.3+
Pro account data stored with AES-256 encryption at rest
IP addresses hashed with SHA-256 and immediately discarded
Extension code reviewed for security before every release
Content Security Policy enforced in extension manifest
Manifest V3 — most secure Chrome extension architecture
No remote code execution — all logic bundled in extension
Organisational Measures
Minimal data collection by design — least privilege principle
Payment processing fully delegated to Stripe (PCI DSS Level 1)
Internal access to user data restricted to essential personnel
Regular internal privacy and security reviews
Responsible disclosure programme for security researchers
Breach notification within 72 hours where legally required

Despite these measures, no system is 100% secure. If you discover a security vulnerability in Lipi, please report it responsibly to security@engramium.com. We take all reports seriously and will respond within 48 hours.

Section 15

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will:

📣
How we notify you of changes
1. Update the "Last updated" date at the top of this policy
2. Publish a changelog entry in the Lipi extension update notes
3. For material changes — those that significantly affect your rights or our data practices — we will display a notification inside the Lipi popup and give you at least 30 days before the new policy takes effect
4. For changes that reduce your privacy protections, we will require your explicit consent before the change applies to your data

Your continued use of Lipi after a policy update constitutes acceptance of the updated policy, except where explicit consent is required. Previous versions of this policy are available upon request.

Section 16

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your data, please contact us. We aim to respond to all enquiries within 5 business days.

📧
General Privacy Enquiries
🔐
Security Vulnerability Reports
🌐
Privacy Policy Page
🏢
Data Controller
Engramium · lipi.engramium.com
⏱️
Response Time
Within 5 business days · Data rights requests within 30 days
🤝
Our final word
Lipi was built on the belief that you deserve to know what's happening with your AI — and that same belief applies to your data. We are committed to being the most transparent, privacy-respecting tool in the AI space. If anything in this policy is ever unclear, email us. We're human, we're reachable, and we care. — The Engramium Team