CIPHER VAULT PRIVACY PROTOCOL

1. Local-First Cryptography

Cipher Vault is built on a "Zero-Knowledge" architecture. All key generation processes occur strictly within your local browser environment using the Web Crypto API. Generated keys are never transmitted to our servers, stored in external databases, or recorded by the extension.

2. Data Transmission

This extension does not perform background data collection. The only network communication occurs during:

• Feedback Submission: When you explicitly use the Feedback Hub, data is sent to our support endpoint via Formspree.
• Preference Sync: Non-sensitive settings (like key length) are synced via Google servers using chrome.storage.sync.

3. Storage Usage

We utilize local storage solely to persist your configuration preferences. We never store the following:

• Generated passwords or security keys.
• Your browsing history or personal identity.

4. Permissions Disclosure

To provide its core utility, Cipher Vault requires:

• clipboardWrite: To enable one-click copying of generated keys.
• storage: To maintain your security parameters across sessions.