Privacy Policy for InstaCrypt MVP

Effective Date: May 10, 2026

Overview

InstaCrypt MVP is a Chrome extension designed to provide client-side encryption for Instagram direct messages.

Your privacy is important to us. This extension does not collect, store, transmit, sell, or share any personal data.

Information Collection

InstaCrypt MVP does not collect any of the following:

• Personal information
• Instagram messages or chat content
• Passwords or account credentials
• Browsing history
• IP addresses
• Analytics data
• Tracking or telemetry information

All encryption and decryption operations occur locally within your browser.

Local Storage

The extension may use Chrome's chrome.storage API solely to save encryption-related settings or keys on your own device.

This data:

• Never leaves your browser
• Is never sent to external servers
• Remains accessible only on your local device

Permissions Explanation

storage

Used to save local encryption settings and preferences.

https://www.instagram.com/direct/*

Required so the extension can encrypt and decrypt messages inside Instagram Direct Message pages.

The extension only runs on Instagram Direct Message pages and nowhere else.

Third-Party Services

InstaCrypt MVP does not use:

• Remote servers
• Cloud databases
• Analytics providers
• Advertising networks
• Third-party trackers

Data Security

All cryptographic processing is performed locally in your browser using client-side encryption techniques.

No message data is transmitted outside your device by the extension.

Changes to This Policy

This privacy policy may be updated occasionally to reflect improvements or changes to the extension.

Any updates will be reflected by revising the effective date above.

Contact

If you have questions about this Privacy Policy, you may contact:

Email: your-email@example.com