Back to home

Privacy Policy

Last updated: April 1, 2026

Overview

Approxima ("we", "us", "our") operates the website at approxima.ai, the Approxima Chrome extension, the Approxima CLI, and related services (collectively, the "Service"). This policy describes what data we collect, how we use it, and your rights regarding that data.

Information We Collect

Account Information

  • Email address (used for authentication via magic links)
  • Name (if provided)
  • Organization name and membership

Application Data

  • App metadata you configure: name, URL, repository, platform, icon, and build settings
  • Test journey definitions (the steps and actions you create)
  • Test execution results, logs, and screenshots captured during automated runs
  • Application secrets and environment variables you provide for test environments (stored encrypted)

Chrome Extension

When you use the Approxima Chrome extension to record test journeys, we collect:

  • User interactions: clicks, form inputs, and navigation actions performed during recording
  • Element descriptions: button text, labels, and accessibility attributes used to identify page elements

The extension does not collect:

  • General browsing activity outside of active recording sessions
  • Page content, HTML, or network requests

The extension requires the following Chrome permissions: activeTab (to interact with the current tab during recording), storage (to persist recording state locally), sidePanel (to display the recording UI), and scripting (to inject the recording script into pages).

Security & Authentication Logs

When you authenticate or perform session-related actions (login, logout, token refresh), we log:

  • IP address — from request headers
  • User agent — browser or CLI identifier
  • Request ID — Cloudflare ray ID or equivalent

These logs are used solely for security monitoring and abuse prevention.

GitHub Integration

When you install the Approxima GitHub App, we receive webhook events related to your repositories, including:

  • Pull request metadata: number, title, URL, branch, and commit hash
  • Deployment status events (used to detect preview URLs for testing)
  • Repository name and GitHub organization name

We do not access or store your source code. We clone repositories only to build your application for testing, and build artifacts are ephemeral.

Cookies

We use a single strictly necessary cookie to keep you logged in. It is not used for tracking or advertising. We do not use analytics SDKs, tracking pixels, or advertising cookies.

How We Use Your Data

  • To provide and operate the Service, including running automated tests on your applications
  • To send transactional emails: magic link authentication, test result reports, and team invitations
  • To post test results as comments on your GitHub pull requests
  • To improve the Service and fix bugs

We do not sell your data. We do not use your data for advertising.

Third-Party Services

We share data with the following third-party services to operate the Service:

  • AI Providers — Screenshots and page content from test runs are sent to third-party AI APIs for automated test validation. Data sent to these providers is governed by their respective privacy policies.
  • GitHub — Test results are posted as PR comments. Subject to GitHub's Privacy Statement.
  • Resend — Used to deliver transactional emails (magic links, reports, invitations).
  • Amazon Web Services (S3) — Used to store test screenshots and build artifacts.
  • Cloudflare — DNS, CDN, and application hosting (Workers). Requests to approxima.ai are proxied through Cloudflare.
  • Neon — PostgreSQL database hosting for application data.

Data Retention

We retain your account data for as long as your account is active. Test execution logs and screenshots are retained to provide you with test history. You may request deletion of your account and associated data at any time by contacting us.

Data Security

We take reasonable measures to protect your data, including:

  • Encryption of secrets and environment variables at rest
  • Automatic masking of sensitive form inputs (passwords, credit cards) during Chrome extension recording
  • Redaction of application secrets from test execution logs
  • HTTPS for all data in transit
  • HTTP-only, secure session cookies

Your Rights

You may:

  • Request access to the personal data we hold about you
  • Request correction or deletion of your data
  • Revoke the GitHub App installation at any time from your GitHub settings
  • Uninstall the Chrome extension at any time

To exercise these rights, contact us at founders@approxima.ai.

Children's Privacy

The Service is not intended for individuals under 18. We do not knowingly collect data from children.

Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised date.

Contact

Questions about this policy? Email us at founders@approxima.ai.