DuoReply Logo
DuoReply
Add to ChromeFree
Back to Home

Privacy Policy

Applicable To: DuoReply Browser Extension and https://www.duoreply.com

Welcome to DuoReply! We take your privacy and data security seriously. This Privacy Policy outlines how DuoReply (the "Extension", "we", "us", or "our") and our associated website (https://www.duoreply.com) handle your information.

Our core privacy philosophy is built on Data Minimization and an "On-Demand Only" architecture. We do not monitor your background activities, nor do we track your global browsing history.

1. What We DO NOT Collect

To ensure your absolute peace of mind, we explicitly declare the boundaries of data we will never touch:

  • 🚫No Browsing History Tracking: DuoReply does not read, record, or track your global browser history, bookmarks, or the websites you visit outside of your active usage of the Extension.
  • 🚫No Background Monitoring: The Extension remains completely dormant while you browse X (formerly Twitter). It will never silently scrape or monitor your timeline data in the background.
  • 🚫No Personally Identifiable Information (PII): We do not scrape, request, or store your real name, X (Twitter) account credentials, email address, or any data that could be used to physically identify you.
  • 🚫No Selling of Data: We will never sell, rent, or trade your data to advertisers, data brokers, or any third-party commercial entities.

2. Information We Collect & How We Use It

Following the principle of data minimization, we only collect the absolute minimum context required to generate a reply, and only when you explicitly trigger the action:

  • Active Tweet Context (On-Demand):
    Only when you actively click the "✨ Reply with DuoReply" badge on a specific tweet, we read the public text content and the author's display name of that single tweet. This is strictly required to provide the AI with the context needed to generate a relevant reply. Tweets you do not click remain completely invisible to us.
  • Your Subjective Input:
    If you provide specific instructions or thoughts in the DuoReply intent input box (e.g., "Argue this with a sarcastic tone"), we process this input to guide the AI generation.
  • Anonymous Usage Logs:
    To maintain service stability and prevent abuse (e.g., rate-limiting API spam), our server (hosted on Vercel) may log instantaneous, anonymous request-level data (such as timestamps, error codes, and obfuscated IP addresses). This data is never linked to your social media accounts and is routinely purged.

3. How Data Interacts with AI (LLMs)

DuoReply's core capabilities are powered by advanced Large Language Models (LLMs). Regarding AI data transmission, we adhere to the highest security standards:

  • Anonymized Transmission: The tweet context and your input instructions are transmitted to our proxy server via a highly secure, encrypted channel (HTTPS). All data is stripped of tracking identifiers before being sent anonymously to our third-party AI providers.
  • Ephemeral Processing: Your text data is used solely for the instantaneous purpose of "generating a reply in real-time." Once the generated draft is returned to your browser, our servers do not persistently store your tweet context or generated drafts in our databases.
  • No AI Training Guarantee: We interact with AI providers via enterprise-grade APIs and strictly enforce confidentiality agreements that prohibit the use of your submitted data for training their foundational AI models.

4. Data Storage & Security

  • Local-First Architecture: Your personalized settings (such as UI preferences or locally configured API keys, if applicable) are encrypted and stored entirely within your browser's Local Storage or Chrome Sync Storage. The DuoReply team has zero access to this local data.
  • Security in Transit: All cloud API requests utilize industry-standard TLS/SSL end-to-end encryption to prevent data interception or tampering during transmission.

5. Cookies on https://www.duoreply.com

When you visit our official website (https://www.duoreply.com), we may use essential cookies solely to maintain basic website functionality (such as security verification). We do not use intrusive third-party tracking pixels (e.g., Facebook Pixel) for cross-site retargeting or advertising.

6. Your Rights (GDPR & CCPA Compliance)

Regardless of your location, we grant you full control over your data:

  • Right to Know and Access: You have the right to know what data we process (as stated in this policy, it is strictly limited to ephemeral, on-demand data).
  • Right to be Forgotten (Erasure): Because we do not persistently store your draft history on our servers, you can completely erase all traces of DuoReply by simply uninstalling the Extension and clearing your browser's extension data.

7. Changes to This Privacy Policy

As we introduce new features to DuoReply (such as potential premium account systems in the future), we may update this Privacy Policy accordingly. Any material changes will be prominently announced in our extension's release notes or on our official website.

8. Contact Us

If you have any questions, suggestions, or concerns regarding this Privacy Policy or DuoReply's data practices, please feel free to reach out to us: