Cloudnine collects nothing and tracks nothing — no analytics, no telemetry, no accounts, and no servers logging your activity. There is no backend.

Everything Cloudnine stores stays on your device, in your browser's local storage, and is never sent to us:
• Enable toggle — whether the extension is active.
• Connected wallet address — saved only after you pair a wallet; cleared when you disconnect.
• Purchase history — a local log of buys you complete, so you can re-share them later.

Outbound requests go only to public data sources needed to display and execute a purchase you start:
• bsky.app — the content script reads link URLs already visible on the page.
• data.objkt.com — public GraphQL for token and listing data.
• api.tzkt.io — public Tezos indexer, to confirm broadcast operations.
• ipfs.fileship.xyz — public IPFS gateway, for token thumbnails.
• A Tezos RPC — to read on-chain state and broadcast the purchases you sign in your wallet.

No request includes any identifier we generate about you. Your wallet address enters a request only after you click Buy and sign with your wallet — at which point it is part of the public, on-chain transaction. Cloudnine never handles your keys; your wallet executes the purchase, not us.

We do not run servers, databases, or accounts; collect analytics, telemetry, or crash reports; serve ads, third-party trackers, or fingerprinting; or sell, share, or broker any data.

Permissions are the minimum needed to add Buy buttons and store local state, scoped to the sites and public endpoints above. Uninstalling removes all Cloudnine state; you can also disconnect your wallet or clear history from the toolbar popup at any time.