Privacy Policy
Doitong Copilot
Plain-language summary. Doitong Copilot is a creative AI side-panel for Chrome. Your chat messages and content you explicitly send are forwarded to our servers and a third-party AI model (Anthropic) only to generate the response. We do not sell your data, do not use it for advertising, and do not train models on your content.
1. Who we are and single purpose
Doitong Copilot is provided by SPACEFOX UNIPESSOAL LDA (Tax ID 519184963, Fernão Ferro, Portugal), the data controller under the EU General Data Protection Regulation. The extension's single purpose: provide an in-browser AI assistant for authenticated users of doitong.com / doitong.ru — chat with AI, image/video/voice generation, and creative actions in the side panel.
2. Data we collect
2.1 Authentication credentials (email and password)
- Email address and password — when you sign in or create an account from the extension's side panel, the email and password you type are transmitted over HTTPS (TLS 1.3) to our authentication endpoint at
doitong.com/loginor/signup. The password is not stored by the extension and is not stored in plaintext on our servers: the server stores only a bcrypt hash and returns a JWT session token in response. - Password reset request — if you request a password reset, your email is sent to our backend to issue a reset link. We do not collect security questions or PINs.
- JWT session token and doitong account identifier — after a successful sign-in, the JWT is stored locally in
chrome.storageand sent with each request to our API. The original password is never persisted by the extension.
2.2 Personal communications (chat)
- Messages you write, files you attach, and AI-generated responses — stored locally in the browser and synced with your doitong account.
- Chat content is proxied by our backend to the selected AI model (see §5).
2.3 Web page content (only during explicit actions)
- When you explicitly invoke an agent task (e.g. “summarize this page”), the active tab's text and DOM structure are sent to our backend and the AI model to perform the task.
- The extension does not read pages in the background. No page data is captured while the extension is idle.
2.4 Anonymous analytics (optional, opt-out)
- Task metrics (durations, error categories), domain names visited (e.g.
amazon.com— not full URLs), and a random anonymous identifier. - You can disable analytics anytime in extension settings.
2.5 Backend technical data
- IP address, user-agent, server logs — used for security and auditing.
3. How we use the data
- Authenticate requests against your doitong account and meter credits.
- Forward messages and explicitly-selected content to partner AI models to generate responses.
- Store chat history so you can access it across sessions and devices.
- Detect abuse, prevent fraud, ensure security.
- Meet tax and other legal obligations.
What we do not do: we do not sell your data; we do not use your messages for advertising or credit-scoring; we do not train foundation AI models on your content without explicit consent.
4. Chrome permissions — justification
Technical note: a small script (refresh.js) is injected on every site as a build-time artifact of our toolchain (Vite HMR). In production builds it only attempts to connect to localhost:8081 for development hot-reload; it does not read or transmit page content. It will be stripped from the production bundle in an upcoming release.
5. Sub-processors and data sharing
- Anthropic, PBC — Claude model provider. Receives chat messages and explicitly-selected content when we make a request. Subject to Anthropic's Privacy Policy and Zero Data Retention for enterprise customers.
- PostHog Inc. — anonymous product analytics (only if enabled). Subject to PostHog's policy.
- AWS (S3, CloudFront) — storage and CDN for generated artifacts.
- Hetzner Online GmbH — application-server hosting.
We do not share your data with advertisers, data brokers, or social networks.
6. International transfers
Anthropic, PostHog and AWS process data outside the EEA (USA). We rely on Standard Contractual Clauses approved by the European Commission.
7. Storage and retention
Where we store data: application data (chat history, account metadata) is stored on our servers at Hetzner Online GmbH (Germany, EU). Generated artifacts (images, audio, video) are stored on AWS S3 / CloudFront. All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Passwords are stored only as bcrypt hashes — never in plaintext. JWT signing keys are kept in a secret manager with restricted access. The JWT token, settings, and recent chat history are also stored locally in chrome.storage within your browser.
Retention:
- Chat history: while your account is active; you can delete it anytime in extension settings or on doitong.com.
- Server logs: 30 days.
- Billing: 10 years (Portuguese tax law).
- Account deletion: personal data is removed within 30 days.
8. Your rights
Access, rectification, erasure, portability, restriction, withdraw consent, complaint to the Portuguese DPA (CNPD, cnpd.pt). To exercise any right contact support@doitong.com.
9. Local storage and cookies
The extension uses chrome.storage to persist the auth token, settings and chat history. The extension does not set browser cookies. Cookies on doitong.com are governed by the main Privacy Policy.
10. Children
The service is not directed to children under 16. We do not knowingly collect data from children.
11. Limited Use (Chrome Web Store)
Our use and transfer of information received from Chrome APIs adheres to the Chrome Web Store Limited Use Policy, including the use restrictions.
12. Changes to this Policy
We notify material changes by email or in the extension panel. Continued use after a change constitutes acceptance.
13. Data controller
SPACEFOX UNIPESSOAL LDA
Rua das Glicínias N22, 2865-769 Fernão Ferro, Portugal
Tax ID (NIF): 519184963 · Cert. 4446-1407-3559
Privacy contact: support@doitong.com