FeatSmith — Privacy Policy

Last updated: 11 July 2026

FeatSmith ("the extension") is a Chrome extension by SiraLabs that helps you draft rule-compliant feature fields for issue trackers such as Jira and Linear. This policy explains what data we process, why, and your choices.

1. Data we process

We do not retain your uploaded documents as files. When you upload a rules document, it is processed in memory to extract rules and the file itself is then discarded — we keep the resulting rules and the document's filename. Note that the text extracted from the document is included in the AI request logs described above and is therefore retained, as part of that prompt, for up to 30 days before its content is purged.

2. How we use it

Solely to provide the service: authenticate you, generate and store your rules and outputs, let your browser connect to your issue tracker, take payment for Pro and grant your plan, respond to your contact messages, prevent abuse, and enforce plan limits. If (and only if) you opt in, we also use your email to send product updates and surveys, which you can stop at any time. We do not sell your data or use it for advertising.

3. Service providers

Our servers and database are hosted with Supabase, and analytics with Amplitude, in the United States. Using FeatSmith from outside the US means your data is transferred to and processed there.

4. Permissions

The extension requests only what it needs: storage (save your settings and, locally, your tracker credentials), sidePanel (the generation UI), identity (sign in with Google, Jira, or Linear), and host access to the issue trackers and their APIs (*.atlassian.net, api.atlassian.com, linear.app, api.linear.app) so it can detect the issue you're viewing and call the tracker's API directly from your browser, plus network access to the US analytics endpoint (api2.amplitude.com) for the pseudonymous usage analytics described above. It does not read pages outside those issue-tracker domains, and it contains no remotely hosted code.

5. Storage, security, and retention

Server-side data is isolated per user via row-level security. Your tracker credentials are stored only on your device and never on our servers. We retain your account data (rules, generations, usage, plan) while your account is active. AI request & response logs (see §1) are retained for up to 30 days; a scheduled job then automatically purges the prompt and response content, keeping only non-content metrics. Beta-access requests (including the source IP recorded for abuse control) are retained while we administer the waitlist and are deleted on request. You can delete an on-device tracker connection at any time (Options → Connections → Disconnect), sign out of your other devices (Options → Account), and request account deletion or deletion of your AI logs (see Contact) to remove your rules, usage records, and stored prompts/responses.

6. Your choices and rights

Connecting an issue tracker is optional. You can disconnect a tracker on your device at any time (which clears the stored credentials), revoke OAuth access from your Atlassian or Linear account, turn off product-usage analytics (Options → Account), and sign out of your other devices (Options → Account). Product-update and survey emails are opt-in and off by default; you can withdraw consent at any time (Options → Account → "Product updates & surveys") or use the unsubscribe link in any such email. Subject to your local law (including the GDPR/UK GDPR and the CCPA where they apply), you may request access to, correction of, a copy of, or deletion of your personal data, and you may object to or restrict certain processing — contact us and we will respond.

7. Contact

Questions, data requests, or deletion requests (including deletion of your AI request & response logs): hello@siralabs.ai.