Kreen — Privacy Policy
Last updated: 2026-06-04
Kreen is a Chrome extension that helps medical students turn practice questions into study
notes and Anki flashcards. This policy explains what data Kreen handles and why.
What we collect
- Account info: your email and password, to create and sign in to your account. Passwords are handled by our auth provider (Supabase) and stored hashed — we never see your plaintext password.
- Question content you act on: when you click Generate, make an Exam-style or Cloze card, or click Get a hint, the text you selected or the question text on the current page is sent to our server to draft study material or provide a hint.
- Images you act on: screenshots or exhibit images you paste, upload, or capture with Grab open are sent to our server when you ask Kreen to generate notes/cards from them. Images you save with a study item are stored in your account.
- Saved study material: notes and cards you choose to save are stored in your account.
- Usage counts: the number of notes you generate per day, to enforce plan limits.
What we do NOT collect
- No browsing history. Kreen reads page content only when you explicitly use a capture/generation action — never in the background.
- We do not sell or rent your data, and never use your content for advertising.
How your data is used
- To generate notes/cards or hints, the question text and any images you submit are sent to OpenAI via our server. Per OpenAI's API terms, API content is not used to train their models.
- Saved notes/cards are stored in Supabase under row-level access controls that restrict each record to your own account.
- Anki export runs locally via the AnkiConnect add-on — cards go from your browser to your local Anki app, not through our servers.
Third parties
| Provider | Purpose | Data shared |
|---|
| Supabase | Auth + database | email, saved notes/cards/images, usage counts |
| OpenAI | Note/card/hint generation | the question text and images you submit |
Data retention & deletion
Your account and saved content remain until you ask us to delete them. Email
mymainemailken@gmail.com to delete your account and all data.
Security
Data is transmitted over HTTPS. Database access is protected by row-level security.
The AI provider key is stored on our server and never shipped in the extension.
Kreen's use of user data complies with the Chrome Web Store User Data Policy,
including the Limited Use requirements.
Contact
mymainemailken@gmail.com