Privacy Policy

Last updated: March 14, 2026

Overview

Phantom is a voice-powered AI browser assistant built as an open-source Chrome extension. Your privacy is a core design principle, not an afterthought.

Data We Collect

Phantom collects no personal data. Specifically:

• No accounts or sign-ups required
• No analytics, tracking, or telemetry
• No cookies on our website (except essential ones)
• No user data is stored on our servers

How the Extension Works

When you use Phantom, the following data flows occur:

• Voice audio is streamed to Google's Gemini API via our WebSocket proxy for real-time conversation. Audio is not stored.
• Screen captures (when vision is enabled) are sent to Gemini for understanding page context. These are not stored.
• API keys (if using BYOK mode) are stored locally in your browser's extension storage and never sent to our servers.
• Memory and embeddings are computed and stored entirely in your browser using a local model. They never leave your device.
• Session summaries are generated via our server but stored only in your browser's local storage.

Privacy Shield

Before any screenshot is sent to the AI, Phantom's Privacy Shield automatically detects and blurs sensitive content including:

• Passwords and credit card numbers
• API keys and tokens
• Social Security Numbers and personal identifiers
• Email addresses and phone numbers

Third-Party Services

Phantom uses the following third-party services:

• Google Gemini API — for AI conversation and understanding. Subject to Google's API Terms.
• Google Cloud Run — hosts the WebSocket proxy server. No user data is persisted.

Open Source

Phantom is fully open source. You can audit every line of code on GitHub.

Contact

For privacy questions, reach out via GitHub Issues or email younes@youneslaaroussi.ca.