Legal

Privacy Policy

Your data belongs to you. Every product we build starts from that principle.

Last updated February 23, 2026

Our Commitment

Studio-Wide Principles

Kindled Flame Studios builds tools that liberate. That philosophy extends to how we handle your data across every product we make.

Local-first by default. We process data on your device whenever possible. If a product requires server communication, we tell you exactly what, why, and where.
No surveillance business model. We don't sell ads. We don't sell data. We don't profile users. Our revenue comes from products people choose to pay for.
Minimal collection. We collect only what's necessary for a product to function. If we don't need it, we don't ask for it.
Transparent changes. If we update this policy, we'll note the changes here with an updated date. No silent edits.

Product Privacy Details

CinderACE — Browser Extension

Overview

CinderACE is a Chrome browser extension that exports AI chat conversations from supported platforms. It processes everything locally in your browser. No conversation data is ever transmitted, stored, or collected by us.

What We Access

CinderACE reads conversation content on the following platforms — only when you actively click the export button:

AI Assistants

  • Claude
  • ChatGPT
  • Google Gemini
  • Grok
  • DeepSeek
  • Perplexity
  • Qwen
  • Microsoft Copilot
  • Mistral
  • Pi

AI Companions

  • Kindroid
  • Replika
  • Character.ai
  • Nomi

On companion platforms, CinderACE may additionally access voice call transcripts, AI-generated images, diary/journal entries, and audio/video content — only when you initiate an export. This content is saved directly to your device and is never transmitted externally.

CinderACE does not read, scan, or access any page content in the background. Extraction occurs only in response to your explicit action.

How We Handle Your Data

Local-First Processing. All conversation extraction and formatting happens entirely within your browser. By default, nothing is sent to external servers.
Direct Downloads. Exported conversations save as local files through your browser's built-in download system by default.
Optional Cloud Export. You can optionally connect Google Drive, Dropbox, or Notion to export directly to your own cloud storage. These connections are opt-in, configured in Settings, and only activated when you explicitly choose a cloud destination. Your data goes to your own accounts — never to our servers.
Zero Data Collection. We do not collect, store, or transmit any conversation content, user data, or usage information. Cloud exports go directly from your browser to your own cloud storage accounts.
No Tracking. We do not use analytics, telemetry, cookies, or any form of persistent tracking.

You can verify this yourself: open Chrome DevTools → Network tab while using CinderACE. During local export, you will see zero network requests originating from the extension. During cloud export, you will see only requests to the cloud service you selected (Google, Dropbox, or Notion).

Permissions Explained

PermissionWhy It's Needed
Active TabRead conversation content from the current page when you initiate an export.
ScriptingInject platform-specific content scripts to extract conversation data, thinking blocks, and media.
DownloadsSave exported conversation files directly to your device.
StorageRemember your export preferences (format, names, theme) locally in your browser.
Host PermissionsAccess the 14 supported AI platform domains listed above — only to read visible conversation content for export. Also includes Google Drive, Dropbox, and Notion API domains for optional cloud export.
IdentityManage OAuth authentication flows for optional cloud export connections (Google Drive, Dropbox, Notion). Only used when you explicitly connect a cloud service in Settings.
Side PanelAllow CinderACE to dock as a Chrome side panel for persistent access alongside AI platforms.

KFS Account & Pro Licensing

CinderACE's free tier requires no account. If you choose to upgrade to Pro, you create a Kindled Flame Studios account.

What we collect. Your email address and a securely hashed password. That's it. No name, no phone number, no billing address.
Why we collect it. To authenticate your account, manage your Pro license, and send password reset emails if you request one.
Where it's stored. Account data is stored on Cloudflare Workers KV — Cloudflare's edge infrastructure. Passwords are hashed using bcrypt before storage. We never store plaintext passwords.
License recovery. Your Pro license is tied to your KFS account, not your device. Log in on any browser and your Pro features reactivate. No hardware fingerprinting, no device tracking.
Account deletion. You can request full account deletion at any time by contacting us. This permanently removes your email, hashed password, and license record from our systems.

Third-Party Services

Stripe handles all payment processing for Pro subscriptions and lifetime purchases. When you upgrade to Pro, you're redirected to a Stripe-hosted checkout page. CinderACE and Kindled Flame Studios never see, process, or store your payment details. Stripe's privacy policy applies to payment data: stripe.com/privacy
Cloudflare Workers powers our account backend — authentication, license validation, and session management. Cloudflare processes your email address and hashed password for these functions. Cloudflare privacy policy
Resend sends transactional emails on our behalf — specifically, password reset emails when you request one. Resend receives only your email address and the reset email content. No conversation data or usage information is shared. Resend privacy policy

Optional Cloud Export Integrations:

Google Drive. When you connect Google Drive in Settings, CinderACE uses the Google Drive API to upload exported files to your own Drive account. Authentication uses OAuth 2.0. Only the files you export are uploaded — no other data is accessed or read from your Drive.
Dropbox. When you connect Dropbox in Settings, CinderACE uses the Dropbox API to upload exported files to your own Dropbox account. Authentication uses OAuth 2.0. Only the files you export are uploaded.
Notion. When you connect Notion in Settings, CinderACE uses the Notion API to export conversation content to a Notion page you select. Authentication uses OAuth 2.0. Only the content you export is sent.

These integrations are entirely opt-in. If you never connect a cloud service, CinderACE makes zero outbound network requests beyond Pro license validation.

No advertising networks, tracking pixels, analytics platforms, or other third-party services are used.

Data Retention

Conversation data: CinderACE retains no conversation data. Exported files go to your device or your own cloud storage and are never stored by us.

Local preferences: Your export settings (format, names, theme, per-platform presets) are stored locally in your browser's extension storage and are removed automatically when you uninstall the extension.

Account data: If you create a KFS account for Pro, your email and hashed password are retained until you request account deletion. License and subscription status is retained for the duration of your subscription.

More products are being forged. Privacy details for each will appear here as they launch.

Your Rights

Free users: No account is required. Uninstalling CinderACE removes all locally stored preferences. Since we collect no personal information from free users, there is nothing to request deletion of.

Pro users: You can request full account deletion at any time by contacting us on X or Discord. This permanently removes your email address, hashed password, and license records from our systems. Uninstalling the extension removes all local preferences independently of your account.

If a future product requires additional data collection, your rights regarding that data will be detailed in its specific section above.

Contact

Questions or concerns about this privacy policy or any Kindled Flame Studios product?

Reach us on X (@KindledFlameDev) or Discord.