Skip to main contentSkip to navigation
Last updated: March 17, 2026

Privacy Policy

How we collect, use, and protect your data across the ChainLinked platform and Chrome extension.

Contents

1Who We Are2Scope3Data We Collect4How We Use Your Data5LinkedIn Session Cookies6Data Sharing7Data Retention8Your Rights9Security10Children11Changes to This Policy12Contact

1. Who We Are

ChainLinked (“we”, “our”, or “us”) is a LinkedIn content management platform for individuals and teams, operated by HigherOps Inc. Our web application is available at chainlinked.ai and we publish the ChainLinked Data Connector Chrome extension (the “Extension”) on the Chrome Web Store.

Questions about this policy can be sent to support@higherops.io.

2. Scope

This policy applies to:

  • The ChainLinked web application at chainlinked.ai
  • The ChainLinked Data Connector Chrome extension
  • Any APIs or services operated by ChainLinked

It does not apply to third-party services you connect to ChainLinked (such as LinkedIn or Google), which have their own privacy policies.

3. Data We Collect

3a. Data collected through the Chrome Extension

The Extension operates entirely within your own LinkedIn session. It captures data that you have already generated or have access to on LinkedIn — it cannot access other users' private data. The following categories are collected:

CategoryExamplesPurpose
Profile dataName, headline, location, profile photo URL, LinkedIn member ID, public identifierDisplay your profile in the ChainLinked dashboard
Analytics dataPost impressions, profile views, follower growth, engagement ratesPopulate your personal and team analytics dashboard
Post & content dataPost text, media URLs, reactions, comments, reposts, per-post metricsTrack content performance and build your post library
Audience demographicsFollower job titles, industries, companies, geographic regionsDisplay audience insights in the dashboard
Network dataConnection count, follower count, invitation metadataNetwork growth tracking
Feed postsPosts from connections visible in your LinkedIn feedPopulate the team activity feed and inspiration features
Messaging metadataConversation counts, unread counts (message content is not stored by default)Optional — only if messaging capture is enabled in settings
Authentication tokensLinkedIn session cookies (li_at, JSESSIONID, lidc, bcookie)Authenticate requests to LinkedIn's internal API on your behalf
Google OAuth tokensGoogle account ID, email address, display nameSign in to ChainLinked using your Google account

3b. Data collected through the web application

  • Account information: Email address, password (hashed), team membership, and role.
  • Content you create: Posts you draft, schedule, or publish through ChainLinked; templates; carousel files.
  • Usage data: Pages visited, features used, and actions taken within the app (used for product improvement).
  • Technical data: IP address, browser type, and device type collected automatically by our infrastructure.

4. How We Use Your Data

  • Provide and operate the ChainLinked platform and Extension
  • Display your LinkedIn analytics, posts, and audience data in your dashboard
  • Enable team analytics and collaborative content features
  • Generate AI-powered content suggestions based on your own post history and style
  • Authenticate you with LinkedIn and Google
  • Send product notifications and sync status alerts
  • Improve the product based on usage patterns
  • Comply with legal obligations

We do not sell your data. We do not use your data for advertising. We do not use your data to determine creditworthiness or for lending purposes.

5. LinkedIn Session Cookies

The Extension captures your LinkedIn session cookies (li_at, JSESSIONID) to make authenticated API requests to LinkedIn on your behalf. These cookies are:

  • Stored in our database associated with your ChainLinked account
  • Used solely to retrieve your own LinkedIn data (not anyone else's)
  • Never shared with third parties
  • Treated as sensitive credentials — access is restricted by row-level security policies in our database
  • Automatically invalidated when your LinkedIn session expires (typically 60 days)

You can revoke access at any time by disconnecting LinkedIn in ChainLinked Settings, which deletes all stored session tokens.

6. Data Sharing

We share data only in the following limited circumstances:

  • Within your team: Analytics and post data may be visible to other members of your ChainLinked team, as that is a core feature of the product.
  • Service providers: We use Supabase for database and authentication infrastructure. Data is stored on Supabase servers in the ap-south-1 (Mumbai) region. Supabase processes data under its own privacy and security policies.
  • AI providers: Content and style data may be sent to AI providers (such as Anthropic or OpenAI) to generate content suggestions. Prompts are not used to train third-party models under our current API agreements.
  • Legal requirements: We may disclose data if required by law, court order, or to protect the rights and safety of ChainLinked or its users.

We do not sell, rent, or trade your personal data to third parties.

7. Data Retention

  • Captured LinkedIn data is retained as long as your account is active.
  • LinkedIn session cookies are deleted when you disconnect LinkedIn or close your account.
  • You can request deletion of all your data at any time by emailing support@higherops.io.
  • Upon account deletion, all personal data is permanently removed within 30 days.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Access

Request a copy of the data we hold about you.

Correction

Request correction of inaccurate data.

Deletion

Request deletion of your data.

Portability

Request your data in a machine-readable format.

Objection

Object to certain uses of your data.

To exercise any of these rights, contact us at support@higherops.io.

9. Security

We implement industry-standard security measures including:

  • Encrypted data transmission (TLS/HTTPS)
  • Row-level security (RLS) policies restricting database access to the authenticated user's own data
  • Authentication via Supabase Auth with support for Google OAuth2
  • Sensitive credentials (session tokens) stored with restricted access controls

No method of transmission or storage is 100% secure. If you discover a security vulnerability, please report it to support@higherops.io.

10. Children

ChainLinked is not directed at children under 16. We do not knowingly collect data from children. If you believe a child has provided us with personal data, contact us and we will delete it.

11. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by email or by displaying a notice in the app. The “Last updated” date at the top of this page reflects the most recent revision. Continued use of ChainLinked after changes take effect constitutes acceptance of the updated policy.

12. Contact

For privacy questions or requests, contact us at:

ChainLinked / HigherOps Inc.

support@higherops.io