← Back to Settings
1. Data Storage Security
1.1 Local Storage
The following data is stored in your browser's local storage:
- App settings and preferences
- Your API keys (if using BYOK feature)
- Cached dictionary data
- Learning progress statistics
API Key Security: Your API keys are stored only in your local browser using Chrome's
secure storage API (chrome.storage.sync). Our servers never receive or store your API keys.
1.2 Cloud Storage
When you log in and enable cloud sync, the following data is stored on our cloud servers (Supabase):
- Account information
- Wordbook data
- Learning statistics
- Subscription status
2. Data Transmission Security
- All network communications use HTTPS/TLS encryption
- API requests are made through secure endpoints
- Sensitive data is appropriately processed before transmission
3. Third-Party AI Services
When you use AI features:
3.1 Built-in AI (Pro/Ultra Users)
- Requests are forwarded through our proxy server
- We do not log or store your query content
- Only usage volume is recorded for quota management
3.2 Bring Your Own Key (BYOK)
- Requests are sent directly from your browser to the AI service provider
- We are not involved in the request process
- Please read each AI service provider's privacy policy to understand how they handle your data
Tip: In BYOK mode, your data only travels between your device and the AI service
provider, not through our servers.
4. Permissions Explained
Browser permissions requested by Immerse and their purposes:
- storage: Store your settings and learning data
- activeTab: Perform vocabulary replacement on the current page
- scripting: Inject content scripts to enable vocabulary replacement
- tts: Provide word pronunciation feature
- identity: Support third-party logins like Google
We do not collect or access any data unrelated to these functions.
5. Security Best Practices
To protect your account and data, we recommend:
- Use strong passwords or trusted third-party logins
- Do not keep login status on public devices
- Regularly rotate your API keys
- Contact us immediately if you notice abnormal activity
6. Data Deletion
You can at any time:
- Clear local data in settings
- Delete cloud data through account settings
- Contact us to request complete account deletion
7. Security Incidents
In case of a security incident, we will:
- Immediately investigate and fix the issue
- Notify affected users within a reasonable time
- Report to relevant authorities as required by law
8. Contact Us
For security-related questions or to report vulnerabilities, please contact us via: