Privacy Policy

Effective Date: April 2026

1. Introduction

At ThreatLens, your privacy and security are our core priorities. We designed our extension from the ground up to operate with zero-trust principles, meaning we process only what is strictly necessary to protect your browser and nothing more.

2. Data We Collect (And What We Don't)

  • File Metadata (Hashes) We compute a cryptographic hash (SHA-256) of your download locally on your machine. Only the hash is sent to our servers to check against threat databases.
  • We DO NOT upload your files. Your actual files, personal documents, and payloads never leave your device. All validation happens locally or via decentralized hash checking.
  • We DO NOT track your browsing history. ThreatLens only triggers when a file download is initiated. It does not read, log, or transmit the websites you visit or your general browsing activity.

3. Browser Permissions and Local Data

ThreatLens uses browser permissions that are necessary for download interception, policy storage, and review workflows. Configuration values such as trust policies and user-supplied API keys are stored locally in the browser profile unless a separate managed or enterprise deployment model is introduced.

4. Third-Party Integrations

ThreatLens can integrate with established threat intelligence networks such as VirusTotal and other security research services. Requests sent to these services may include URLs, domains, hashes, or other security metadata required to perform reputation analysis. We do not design these lookups to send your personal documents or raw local files.

5. Data Retention and Operational Records

ThreatLens may maintain temporary in-browser records for download review state, user decisions, and operational statistics needed to make the product function correctly. These records are designed to support security workflows rather than behavioral advertising or broad user tracking.

6. Enterprise and Partner Engagements

If you contact ThreatLens regarding enterprise solutions, managed rollouts, or partnership discussions, the information you voluntarily provide to us by email may be used to respond to your inquiry, continue a business conversation, and coordinate next steps.

7. Changes to this Policy

We may update this Privacy Policy periodically. If significant changes are made, we will notify users through the extension interface, our website, or other appropriate channels before the changes take effect.

8. Contact Us

If you have any questions or require administrative assistance regarding privacy, please reach out to us at dev.Sahilthakur@gmail.com.