№ 002 · Legal

Privacy Policy.

Last updated · 05 · 14 · 2026

TL;DR

nok. is a Chrome extension that watches AI chat tabs locally and notifies you when a response finishes. We don't run a server, don't track you, and don't sell your data. The only data we ever hold is the email address you optionally give us to be notified at launch — and we use it for that, and nothing else.

What nok. does on your device

nok. runs entirely as a browser extension. To detect when an AI response finishes, the extension reads the DOM and network activity of the AI tabs you visit (Claude, ChatGPT, Gemini, Perplexity, Grok, Higgsfield). This reading happens only inside your browser; nothing is sent to us.

What we collect from the extension

Nothing. nok. has no analytics, no telemetry, and no backend. We do not see what you ask AIs, what they answer, when you use the extension, or which sites you visit.

Optional: launch alert email (only if you opt in)

On nokalarm.com, you may enter your email address to be notified at launch. This is the only data we actively hold about you, and only if you choose to give it to us.

What we store: your email address, the timestamp of opt-in, and the form source ("landing-hero").
Why: to send you exactly two emails — one on launch day (June 2, 2026), and one when v1.1 ships. After that, your address either becomes inactive or you may unsubscribe at any time.
Where it's stored: Resend (our email service provider, acting as a sub-processor on our behalf). Resend's privacy policy applies to that processing. We do not share your address with anyone else.
Retention: up to 12 months after the last email we send you, then permanent deletion. If you unsubscribe, your address is marked unsubscribed immediately and deleted within 30 days.
Your rights (GDPR / CCPA): you can request access, correction, or deletion of your data at any time by emailing hello@nokalarm.com. We respond within 30 days. California residents may also opt out of any "sale" of personal information — though we never sell anything to anyone, so this is a non-issue.
Legal basis: consent (you typed your email into a form whose stated purpose was launch notifications). Withdrawing consent is one click away via the unsubscribe link in every email.

If you never enter your email, we have nothing about you — full stop.

What is stored locally on your device

The following data is saved to your browser's local extension storage (chrome.storage.sync and chrome.storage.local) and never leaves your device:

Your preferences (notification mode, sound choice, Do Not Disturb hours, theme)
Recent completion history (last 3 entries — source AI and a short summary), used only to populate the popup's "Recent" list
Your license key, once you activate Pro
An optional Spotify access token, if you connect Spotify

You can clear all of this at any time by removing the extension from Chrome, or by clicking "Remove" inside the popup's license card.

Third-party services (optional, you control them)

Some Pro features connect to third parties only when you explicitly configure them:

Slack / Discord / Microsoft Teams webhooks — if you paste a webhook URL into nok., completion alerts are posted to that webhook. nok. posts directly from your browser to the webhook URL you provided. No data passes through us.
Spotify — if you connect Spotify, nok. uses the standard Spotify OAuth (PKCE) flow to obtain an access token, stored locally. Playback commands go directly from your browser to Spotify's API. We never see your Spotify account, your tokens, or your listening history.
License verification — when you enter a license key in the popup, nok. sends it once to Gumroad's licensing API (api.gumroad.com) to confirm the purchase is valid. After that one-time verification, the result is cached in your browser; nok. does not re-contact Gumroad on subsequent uses. Gumroad's own privacy policy applies to that single API call.

Permissions nok. requests, and why

notifications — to show the completion alert.
storage — to save your preferences locally.
offscreen — to play sound and read screen geometry for the Reply popup placement.
identity — only used for Spotify OAuth, if you connect.
downloads — to save Higgsfield-generated images on your request.
clipboardRead — only used to detect a license key on your clipboard so the popup can offer one-click activation. nok. does not read your clipboard at any other time.
Host permissions for the AI sites (claude.ai, chatgpt.com, gemini.google.com, perplexity.ai, grok.com, higgsfield.ai) — required to detect when a response finishes on those sites.

Payments

If you buy a Pro license, the purchase is processed by Gumroad. Gumroad collects payment information and emails you a license key. Gumroad's privacy policy applies to that transaction. nok. itself never receives your payment details.

Children

nok. is not directed to children under 13 and does not knowingly collect any data from anyone — including children.

Changes to this policy

If we make material changes (for example, if a future server-backed feature is introduced), we will update the "Last updated" date above and announce changes prominently on nokalarm.com. The current policy is always available at this URL.

Contact

Questions, complaints, or data requests: hello@nokalarm.com.