Privacy Policy
This policy applies exclusively to the NMB Shadow browser extension. Our commitment is absolute: your data never leaves your machine.
01. Data Sovereignty
Unlike traditional DLP solutions that sync logs to a cloud dashboard, NMB Shadow is architected for Local Sovereignty. We do not maintain any central servers that collect, store, or process your browser activity or input data.
02. Information Handling
On-Device Processing
All text scanning, pattern matching (PII/Credentials), and redaction logic are executed locally within your browser's extension sandbox. No text fragments are ever transmitted to NMB or third parties.
Local Incident Logs
When sensitive data is detected, a summary (site name, timestamp, and leak type) is stored in Chrome Local Storage. This log is used solely for your dashboard display. We cannot access this log.
03. Permission Rationale
- [*] Storage: Required to save your local security telemetry and custom asset lists.
- [*] Scripting: Required to inject the local interception banner into AI chatbot interfaces.
- [*] Host Access: Used to monitor textareas on generative AI platforms to block accidental data submission.
04. Zero Third-Party Analytics
NMB Shadow does not use Google Analytics, Mixpanel, or any other tracking SDKs. We do not track installation counts, active users, or feature usage statistics.