Legal

Privacy Policy

Last updated: March 2026

SalesMAXXing ("we", "us", "our") operates a Chrome extension and companion web application for AI-powered lead qualification from LinkedIn. This policy explains what data we collect, how we use it, and your rights.

1. What Data We Collect

SalesMAXXing collects the following categories of data:

  • LinkedIn profile data — name, headline, company, location, experience, and profile URL for connections visible on your LinkedIn pages.
  • LinkedIn connections list — names, headlines, and profile URLs of your first-degree connections as displayed in the LinkedIn web interface.
  • Qualification criteria — any custom criteria, prompts, or preferences you provide to configure how leads are scored and ranked.
  • Account information — your name, email, and LinkedIn profile metadata obtained through LinkedIn OIDC sign-in via Supabase.

2. How We Use Your Data

Your data is used exclusively to:

  • AI-powered lead qualification — LinkedIn profile and connection data is sent to Anthropic's Claude API to score, rank, and qualify leads based on your criteria.
  • Personalized InMail draft generation — Claude generates tailored outreach messages for qualified leads, which you can review and edit before sending.
  • Displaying ranked leads — qualified results are presented in the extension side panel and web dashboard for your review.
  • Authentication — account information is used to maintain your session across the web app and Chrome extension.

3. Data Storage

  • Supabase (PostgreSQL) — qualified lead results, account information, and your qualification preferences are stored in our Supabase database. Data is protected by row-level security policies.
  • chrome.storage.local — the extension caches session tokens, extracted connection data, and user preferences locally on your device. This data never leaves your browser unless you trigger a qualification run.
  • Encryption in transit — all data transmitted between the extension, our API endpoints, and third-party services is encrypted via HTTPS/TLS.

4. Data Sharing

We do not sell, rent, or share your personal data with third parties for marketing or advertising purposes. Your data is only shared with the following service providers as strictly necessary to operate the product:

  • Anthropic — LinkedIn profile and connection data is sent to the Claude API for AI-powered lead qualification and InMail generation. Anthropic does not use API inputs for model training. See Anthropic's Privacy Policy.
  • Vercel — hosts our API endpoints and web application.
  • Supabase — provides authentication and database services.

No other third parties receive your data.

5. Data Retention and Deletion

You may request deletion of all your data at any time by contacting us. Specifically:

  • Server-side data — deleting your account removes all associated data from our Supabase database, including qualified leads, preferences, and profile information.
  • Local cached data — all data stored in chrome.storage.local is automatically cleared when you uninstall the extension. You can also manually clear extension data from your browser settings at any time.
  • AI processing data — data sent to Anthropic for processing is not retained by Anthropic after the API request completes.

6. LinkedIn Data and Compliance

SalesMAXXing respects LinkedIn's platform and your connections' privacy:

  • Read-only access — the extension only reads publicly visible data on LinkedIn pages you actively visit. It does not modify any content, send messages, or take automated actions on your behalf.
  • No automated browsing — the extension does not navigate to pages automatically or perform actions without your explicit initiation. All data extraction occurs on pages you are actively viewing.
  • Visible data only — we only access information that is already displayed to you in the LinkedIn web interface. We do not access private messages, hidden profile fields, or data behind access restrictions.

7. Security

We take reasonable measures to protect your data. All data in transit is encrypted via TLS. Authentication tokens are stored securely in chrome.storage.local. Server-side data is protected by Supabase row-level security policies. Access to production systems is restricted to authorized personnel.

8. Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of SalesMAXXing after changes constitutes acceptance of the revised policy.

9. Contact

For questions, concerns, or data deletion requests regarding this privacy policy, contact us at: privacy@salesmaxxing.com