Privacy Policy
Last updated June 16, 2026
At Highflame, we take your privacy seriously. By using or accessing our Services, you acknowledge accepting the practices outlined below, and consent that we will collect, use and disclose your information as described.
Material changes notice
As Highflame improves its Services, this Privacy Policy may change. Material changes will be posted on Highflame websites (highflame.com, highflame.ai, highflame.io), via email, or by other means. If you use the Services after changes are posted, you agree to all modifications.
What this Privacy Policy covers
This policy covers how Highflame treats Personal Data gathered when accessing or using our Services. "Personal Data" means any information identifying or relating to a particular individual, including information referred to as "personally identifiable information" under applicable data privacy laws. The policy does not cover the practices of companies Highflame doesn't own or control.
Categories of personal data we collect
| Category | Business / commercial purpose | Third parties with whom we disclose |
|---|---|---|
| Profile or contact data (first/last name, email, username) | Providing, customizing and improving Services; marketing; corresponding | Service providers; advertising partners |
| Device / IP data (IP address) | Providing, customizing and improving Services; marketing; corresponding | Service providers |
| Consumer demographic data (zip code) | Providing, customizing and improving Services; marketing; corresponding | Service providers; advertising partners |
| Professional / employment data (resume, job title) | Providing, customizing and improving Services; marketing; corresponding | Service providers; advertising partners |
| Geolocation data (IP-address-based location) | Providing, customizing and improving Services; marketing; corresponding | Service providers; advertising partners |
| Inferences from other data (attributes, behavior, predispositions) | Providing, customizing and improving Services; marketing; corresponding | Service providers; advertising partners |
Our commercial or business purposes for collecting personal data
Providing, customizing and improving the Services
- Creating and managing your account or user profiles
- Providing the products, services or information you request
- Meeting the reasons for which you provided the information
- Providing support and assistance
- Improving Services through testing, research, analytics, and product development
- Personalizing Services, website content and communications based on your preferences
- Fraud protection, security and debugging
- Carrying out other business purposes stated when collecting your Personal Data
Marketing the Services
- Marketing and selling the Services
- Showing advertisements, including interest-based or targeted advertising
Corresponding with you
- Responding to correspondence we receive
- Contacting you when necessary or requested
- Sending information about Highflame or the Services
Other permitted purposes for processing personal data
Each category of Personal Data may be collected, used, and disclosed with government, law enforcement, or other parties to meet legal requirements and enforce legal terms, including:
- Fulfilling legal obligations under applicable law, regulation, court order or legal process
- Preventing, detecting and investigating security incidents and potentially illegal activities
- Protecting the rights, property or safety of you, Highflame or another party
- Enforcing agreements with you
- Responding to claims that content violates third-party rights
- Resolving disputes
Highflame will not collect additional categories of Personal Data or use collected data for materially different, unrelated or incompatible purposes without providing notice or obtaining consent.
Categories of sources of personal data
You
Highflame collects Personal Data when you:
- Create an account or use interactive tools and Services
- Provide information in free-form text boxes, surveys or questionnaires
- Send emails or otherwise contact Highflame
Through cookies: information collected via cookies and similar technologies, or from applications transmitting data from your computing device for the provision of Services.
Third parties
Vendors: analytics providers analyzing interaction and engagement with the Services, or providing customer support.
Advertising partners: vendors assisting with marketing or promotional services related to your interaction with our websites, applications, products, Services, advertisements or communications.
How we disclose your personal data
Service providers
These parties help provide the Services or perform business functions:
- Hosting, technology and communication providers
- Analytics providers for web traffic or site usage
- Security and fraud prevention consultants
- Support and customer service vendors
- Product fulfillment and delivery providers
Advertising partners
These parties market services and provide relevant offers, including ad networks.
Legal obligations
Personal Data may be disclosed with third parties in conjunction with the activities described under "Other permitted purposes for processing personal data."
Business transfers
All Personal Data may transfer to a third party undergoing a merger, acquisition, bankruptcy or other transaction where that third party assumes control of the business.
Data that is not personal data
Highflame may create aggregated, de-identified or anonymized data from collected Personal Data by removing personally identifiable information. Such data may be disclosed to third parties for lawful business purposes including analyzing, building and improving Services and promoting our business, provided disclosure cannot identify you.
Tracking tools, advertising and opt-out
Cookies and similar technologies
The Services use cookies and similar technologies including pixel tags, web beacons, clear GIFs and JavaScript (collectively, "Cookies") to enable servers to recognize your web browser, indicate how and when you visit and use the Services, analyze trends, learn about users, and operate and improve the Services. The Services do not support "Do Not Track" requests from browsers at this time. See our Cookie Policy for full detail.
Cookie management
You can decide whether to accept Cookies through your internet browser's settings. Most browsers allow turning off Cookies, preventing acceptance of new Cookies, and deciding on each new Cookie's acceptance. You can also delete existing Cookies. However, you may need to manually adjust preferences at each visit and some functionalities may not work. For more information about Cookies and managing or deleting them, visit allaboutcookies.org.
Session replay technology
Highflame may use session replay technology to identify and resolve customer issues, monitor and analyze Service usage, understand user behavior, and improve the Services. By continuing to use the Services, you consent to the use of session replay technology. To change session replay settings, access Cookie management settings via the provided link.
Information about interest-based advertisements
Highflame may serve advertisements and allow third-party ad networks, including ad servers, agencies, technology vendors and research firms, to serve advertisements through the Services. These may target users fitting certain profile categories or displaying preferences or behaviors ("Interest-Based Ads").
Information for Interest-Based Ads (including Personal Data) may come from you or be derived from usage patterns on the Services and/or third-party services. Information gathering may track activities across time and unaffiliated properties, including when you leave the Services.
Data security
Highflame seeks to protect Personal Data from unauthorized access, use and disclosure using appropriate physical, technical, organizational and administrative security measures based on the type of data and method of processing. You should also protect your data by appropriately selecting and protecting your password or sign-on mechanism; limiting access to your computing device and browser; and signing off after accessing your account. Although Highflame works to protect account and data security, no method of transmitting data over the internet or storing data is completely secure.
Data retention
Highflame retains Personal Data as long as necessary to provide the Services or perform the business or commercial purposes for which it was collected. When establishing retention periods, Highflame considers the collection source, need for the data, collection reasons, and data sensitivity. In some cases, Personal Data is retained longer if necessary to comply with legal obligations, resolve disputes, collect owed fees, or if otherwise permitted or required by applicable law, rule or regulation. Information may be retained in anonymous or aggregated form where it would not identify you personally.
- Profile information and credentials are retained as long as you have an account
- Device / IP data is retained as long as necessary to ensure systems work appropriately, effectively and efficiently
Highflame Browser Security extension
Data collection
The Highflame Browser Security extension processes user prompts, file uploads, and clipboard content locally in the browser to evaluate them against enterprise security policies. No user content transmits to external servers unless configured with an API key for enterprise policy management, in which case prompts are sent to Highflame's Shield API for policy evaluation.
Data storage
Security violation logs store locally in the browser's extension storage. When connected to an enterprise account, violation metadata (timestamp, policy violated, platform) may sync to Highflame's servers.
Data sharing
User content is never sold or shared with third parties. Enterprise administrators may view aggregated violation reports for their organization.
Data deletion
Users can delete all locally stored data by uninstalling the extension or clearing extension storage via chrome://extensions. To request server-side data deletion, contact support@highflame.com.
Personal data of children
Highflame does not knowingly collect or solicit Personal Data from children under 13 years of age. If you are a child under 13, do not attempt to register for or use the Services or send Personal Data. If Highflame learns it has collected Personal Data from a child under 13, it will delete that information quickly. If you believe a child under 13 may have provided Personal Data, contact support@highflame.com.
Other state law privacy rights
California resident rights
Under California Civil Code Sections 1798.83-1798.84, California residents are entitled to contact Highflame to prevent Personal Data disclosure to third parties for their direct marketing purposes. Submit such requests to support@highflame.com. Your browser may offer a "Do Not Track" option; our Services do not support Do Not Track requests at this time. For more information, visit allaboutdnt.com.
Nevada resident rights
Highflame does not currently sell Personal Data as sales are defined in Nevada Revised Statutes Chapter 603A.
Contact information
For questions or comments about this Privacy Policy, how Highflame collects and uses Personal Data, or your choices and rights regarding collection and use, contact us:
Web: highflame.com
Email: support@highflame.com