Corvie

Privacy Policy

Corvie saves and organizes browser tabs at the user's request. Free libraries are stored locally in the user's browser. Paid synced libraries are end-to-end encrypted: Corvie's servers store only ciphertext they cannot read. Corvie does not sell user data, use user data for advertising, or collect page body content, keystrokes, financial information, health information, or location.

Last updated: July 8, 2026

Overview

Corvie is a browser extension for saving, organizing, searching, and revisiting browser tabs as structured sessions. This policy explains what data Corvie collects, how that data is used, and when it is shared with service providers.

Controller And Contact

Corvie is operated by Alex Teghipco. For privacy questions or requests, contact support@corvie.app.

Data Corvie Collects

End-to-End Encryption

Free local-only libraries are stored in the browser's extension storage on that device and are not uploaded to Firebase by Corvie. They do not sync across browsers or platforms unless the user upgrades to Corvie Cloud and explicitly uploads the local library.

Saved tab data and user-created organization data are encrypted on the user's device before they sync through Corvie Cloud. Corvie's servers store only encrypted data and an encrypted ("wrapped") copy of the user's data key; the passphrase that unlocks it never leaves the user's devices, so neither Corvie nor its service providers can read a synced library.

How Data Is Used

Lawful Bases

Data Sharing

Corvie uses browser extension storage for free local libraries. For paid cloud features, Corvie uses Firebase and Google Cloud for authentication, syncing, Firestore storage, Cloud Functions, backup storage, and security operations. Corvie uses Stripe for paid subscription checkout, billing management, and subscription status webhooks. Synced library content reaches those services only in encrypted form, except for explicit hosted AI requests as described above. Hosted AI requests may use Google Gemini or FriendliAI depending on the selected model. Optional Google Calendar connections use Google's read-only Calendar APIs. Corvie does not sell user data, transfer user data to data brokers or advertising platforms, or use user data for personalized advertising.

Retention And Backups

Free local-only library data remains in the user's browser extension storage until the user deletes it, clears browser data, removes the extension, or loads another backup. Live account and synced library data are kept until the user deletes their data or account. Firestore point-in-time recovery is retained for 7 days, daily managed backups for 14 days, and weekly managed backups for 14 weeks. Disaster backup bucket snapshots are kept according to the bucket lifecycle and retention policy. When a user deletes data or an account, Corvie records a minimal erasure tombstone so deleted users can be re-deleted if an older backup is ever restored.

User Rights

Depending on location, users may have rights to be informed, access their personal data, correct inaccurate data, export data in a machine-readable format, delete data, restrict or object to processing, withdraw consent, and complain to a supervisory authority. Corvie provides in-app export and deletion controls where available. Requests can also be sent to support@corvie.app.

Remote Code

Corvie does not execute remotely hosted code. Network requests are used for authentication, syncing, storage, and optional AI/data processing.

The use of information received from Google APIs will adhere to the Chrome Web Store User Data Policy, including the Limited Use requirements.