Cortex
Trust & Security

Privacy Policy

Last Updated: June 15, 2026. This policy describes how Cortex collects, uses, and protects your information across our website, web platform, and browser extension.

At Cortex (also referred to as "we", "our", or "us"), we are dedicated to maximizing your conversion rates through state-of-the-art AI design and copy auditing tools while maintaining absolute respect for your privacy. This Privacy Policy details our practices concerning data collection, processing, and storage for both our web application at Cortex and our Google Chrome Extension, Cortex - AI UX Copilot (also known as Cortex - AI UX Analyzer).

1. Web Platform Information Collection

When you use our web platform, we collect certain information to provide and improve our core optimization services:

  • Account Information: When you sign up via Supabase Auth or Google OAuth, we collect your email address, full name, and avatar image to set up your personal workspace.
  • Project & Audit Data: We store website URLs, page text content, design metadata, and generated audit reports in our secure Supabase database so you can access your historical CRO insights.
  • Transaction Information: Details regarding credit transactions, workspaces membership roles, and subscription tier indicators. All payment processing is handled securely; we never store your raw credit card credentials on our servers.

2. Chrome Extension Privacy & Data Usage Disclosures

As part of our commitment to transparency and in accordance with the Google Chrome Web Store Developer Program Policies, we declare the following specifics for our extension: Cortex - AI UX Copilot.

Data Collection Declarations

Our extension declares the collection of the following data categories under the developer privacy settings:

  • User Activity: Page content, DOM structure, and UI interactions (collected exclusively to run the UX extractor audit).
  • Website Content: Text and structural elements of active pages on which you explicitly initiate audits.
  • Authentication Information: Safe credentials/login tokens stored locally, used solely to link the extension to your secure Cortex account.

Single-Purpose Policy Statement

"Cortex - AI UX Analyzer is created solely to provide real-time website UX analysis, design overlays, visual heatmap predictions, scroll depth visualization, and full-page auditing features. It only reads active page text and DOM layouts when the user explicitly triggers an audit or opens the workspace panel, and only syncs user-authorized data with their secure Cortex account."

Data Usage Policy Questions & Answers

How is the user data handled?

Data is processed locally in the browser to compute scroll depth boundaries and overlay heatmap coordinates. Pages audited by the user are analyzed to extract structural elements (e.g., headers, buttons), which are then securely sent to the Cortex database to generate UX insights. No personal browser history or credential data is ever tracked or stored.

Is the data transferred to third parties?

No. Data is only securely sent to your own Cortex servers (backed by Supabase) for account authentication and user-owned dashboard synchronizations. It is never sold, traded, or transferred to third-party marketing networks.

Is the data used for credit checking or lending purposes?

No.

Is the data used for marketing, profiling, or advertising?

No.

3. How We Use Your Information

We use the information we collect to power and optimize your conversion audits:

  • Generating tailored design and copywriting suggestions using our AI pipelines.
  • Synchronizing audit history across your dashboard, workspaces, and team members.
  • Running automated Lighthouse performance and SEO checks via Google PageSpeed API.
  • Monitoring, preventing, and auditing system abuse, security issues, or illegal activities.

4. Data Security & Storage

Your data security is of paramount importance to us. All platform information is stored in our database, which is built on Supabase's secure enterprise-grade PostgreSQL framework. Row Level Security (RLS) is strictly enforced on all tables, ensuring that workspace members and authenticated users can only view or modify their authorized projects and analyses.

All data in transit is encrypted using secure HTTPS/SSL connections. While we implement standard commercial guardrails, no electronic transmission or storage method is 100% immune, and we work continually to maintain top-tier industry compliance.

5. Your Rights and Choices

Depending on your location, you may have rights under the GDPR, CCPA, or other local data privacy laws. These rights include:

  • Access & Portability: Requesting a copy of the audits and profile information we store.
  • Correction & Deletion: Modifying incorrect details, deleting projects, or completely closing your Cortex account.
  • Revocation of Auth: You can disconnect Google Auth or unlink the Chrome extension from your workspace settings at any time.

To exercise any of these privileges, please reach out to us at our support channel below.

Questions or inquiries?

We are happy to answer any questions about our privacy policies or data practices.

Email support: support@cortex-ai.com