Privacy by Design: Unlike Big Tech that harvests your data in shadows, Action Model operates with complete transparency. You know what we collect, why we collect it, and you’re rewarded for every contribution. This is how data sharing should work.
Our Privacy Commitment
You Own Your Data, We’re Just Borrowing It
Full Transparency
Every piece of data collected is documented. No hidden tracking, no surprise collection, no dark patterns.
User Control
Pause, delete, or export your data anytime. Add sites to block lists. You have complete control.
Fair Compensation
Unlike others who profit from your data, we reward you with tokens that represent actual ownership.
Security Architecture
Military-Grade Protection
Bank-Level Security: We use the same encryption standards as financial institutions. Your data is protected by multiple layers of security, from collection through storage to processing.
Multi-Layer Security Model
Secure Data Capture
Browser Extension Security:- Runs in isolated sandbox environment
- No access to other extensions or tabs
- Encrypted data transmission
- Local anonymization before sending
- SSL/TLS encryption for all transfers
- Certificate pinning to prevent MITM attacks
- Data compression and obfuscation
- Real-time threat detection
What We Collect vs What We Don’t
Complete Transparency
✅ What We Collect
✅ What We Collect
Interaction Data:
- Click coordinates and targets
- Page navigation sequences
- Form field interactions (not content)
- Scroll patterns
- Time spent on tasks
- Page URLs (excluding parameters)
- DOM structure
- Screenshot regions (anonymized)
- Browser viewport size
- General geographic region (country)
- Page load times
- Action success/failure
- Network request metadata
- Error states
❌ What We Never Collect
❌ What We Never Collect
Personal Information:
- Passwords or login credentials
- Credit card or payment details
- Social Security numbers
- Personal health information
- Private messages or emails
- Form input values (only structure)
- File contents
- Clipboard data
- Camera or microphone access
- Location beyond country level
- Installed software list
- File system contents
- Other browser data
- Cookies or session data
- Hardware identifiers
Automatic Privacy Protection
Smart Exclusions
Zero-Touch Security: Sensitive sites are automatically excluded without any action required from you. Banking, healthcare, and government sites are never recorded.
Protected Categories
| Category | Examples | Protection Level |
|---|---|---|
| Financial | Banks, payment processors, crypto exchanges | Complete exclusion |
| Healthcare | Patient portals, insurance, medical sites | Complete exclusion |
| Government | Tax sites, DMV, benefits portals | Complete exclusion |
| Authentication | Password managers, 2FA apps | Complete exclusion |
| Adult Content | Automatically detected and excluded | Complete exclusion |
| Private Browsing | Incognito/Private mode | Never recorded |
User Control Features
You’re in Charge
1
Pause Anytime
One click to pause all recording. Set schedules for automatic pausing during work hours or specific times.
2
Custom Block Lists
Add any website to your personal block list. These sites will never be recorded, no questions asked.
3
Selective Sharing
Choose which types of data to share. Want to exclude screenshots? Forms? Network requests? You decide.
4
Data Deletion
Request complete deletion of your data at any time. We’ll remove it from all systems within 72 hours.
5
Export Your Data
Download all your contributed data in standard formats. It’s yours—take it whenever you want.
6
Earnings Transparency
See exactly what data earned you tokens and why. Complete transparency in the reward system.
Data Anonymization
Privacy-Preserving Techniques
K-Anonymity: Your data is mixed with at least 1,000 other users’ data before processing, making individual identification impossible.
Anonymization Pipeline
Stage 1: Collection
- Remove personal identifiers
- Strip URL parameters
- Blur sensitive regions
- Hash user sessions
Stage 2: Processing
- Aggregate similar actions
- Add statistical noise
- Generalize specifics
- Remove outliers
Stage 3: Storage
- Separate data from identity
- Distribute across servers
- Encrypt all records
- Regular data rotation
Stage 4: Training
- Batch processing only
- No individual tracking
- Differential privacy
- Secure aggregation
Compliance & Regulations
Meeting Global Standards
European Standards
Your Rights Under GDPR:- Right to access your data
- Right to rectification
- Right to erasure (“right to be forgotten”)
- Right to data portability
- Right to object to processing
- Right to restriction of processing
- Privacy by design and default
- Data minimization
- Purpose limitation
- Lawful basis for processing
- Data protection officer appointed
Data Governance
Community-Owned, Community-Governed
DAO Oversight: Major privacy decisions are voted on by token holders. This isn’t corporate privacy theater—it’s community-controlled data governance.
Governance Structure
Privacy Committee
Privacy Committee
Elected community members who oversee privacy practices, review policies, and ensure compliance with our commitments.
Transparency Reports
Transparency Reports
Quarterly reports detailing data collected, requests received, actions taken, and any privacy incidents (we’ve had zero).
Community Audits
Community Audits
Token holders can propose and vote on independent privacy audits to verify our practices.
Open Development
Open Development
Our privacy tools and anonymization algorithms are open-source for community review and improvement.
Security Measures
Protecting Your Contribution
Infrastructure Security
Data Centers:
- Tier 4 data centers
- Geographic redundancy
- 24/7 monitoring
- Physical security
- Disaster recovery
Application Security
Software Protection:
- Regular security updates
- Vulnerability scanning
- Code signing
- Secure development lifecycle
- Bug bounty program
Access Control
Authentication:
- Multi-factor authentication
- Biometric options
- Session management
- IP allowlisting
- Anomaly detection
Incident Response
Rapid Response:
- 24/7 security team
- Automated threat detection
- Incident response plan
- User notification system
- Recovery procedures
Privacy Tools
Take Control
1
Privacy Dashboard
Access your personal privacy dashboard to view all collected data, manage settings, and control sharing preferences.
2
Data Inspector
See exactly what data was collected from each session, with the ability to delete specific recordings.
3
Block List Manager
Easily add, remove, and manage websites on your personal block list with wildcard support.
4
Consent Center
Granular control over what types of data you share, with easy toggle switches for each category.
5
Privacy Report
Generate detailed reports of your data contribution, earnings, and privacy settings for your records.
Trust & Transparency
Our Open Commitment
Radical Transparency: We publish everything—from our privacy policy changes to security incidents (none so far) to data request statistics. No corporate PR spin, just facts.
Transparency Initiatives
| Initiative | Description | Frequency |
|---|---|---|
| Public Audits | Third-party security audits published in full | Annual |
| Transparency Reports | Data requests, collection stats, incidents | Quarterly |
| Privacy Changelog | Every privacy policy or practice change | Real-time |
| Community Q&A | Direct answers to privacy questions | Monthly |
| Open Source Tools | Privacy and security tools available on GitHub | Ongoing |
Frequently Asked Questions
Can Action Model see my passwords?
Can Action Model see my passwords?
Never. Password fields are automatically detected and excluded from any recording. We also exclude password manager applications entirely.
What happens to my data if I delete my account?
What happens to my data if I delete my account?
All your data is permanently deleted within 72 hours. This includes training data, earned tokens history, and any associated metadata. Tokens you’ve earned remain yours.
Can my employer see my training data?
Can my employer see my training data?
No. Your data is anonymized and aggregated with thousands of others. Individual browsing patterns are never accessible to anyone, including us.
Do you sell user data?
Do you sell user data?
Absolutely not. We never have and never will sell user data. Our business model is based on B2B API usage, not data sales.
How do you handle government data requests?
How do you handle government data requests?
We require valid legal process and notify users unless legally prohibited. We publish statistics on all requests received in our transparency reports.
Can I use a VPN with the extension?
Can I use a VPN with the extension?
Yes! VPNs are fully supported and don’t affect functionality. We encourage privacy-conscious browsing habits.
What about COPPA and children's privacy?
What about COPPA and children's privacy?
Action Model is not intended for users under 16. We don’t knowingly collect data from children and will delete any such data if discovered.
Security Resources
Privacy Policy
Read our complete privacy policy in plain English
Security Whitepaper
Technical details of our security architecture
Report an Issue
Found a security issue? Report it for rewards
Contact Our Privacy Team
We’re Here to Help: Have privacy concerns or questions? Our dedicated privacy team responds within 24 hours.
- Email: privacy@actionmodel.com
- Privacy Hotline: 1-800-PRIVACY
- Encrypted Contact: [PGP Key Available]
- Privacy Officer: Dr. Sarah Chen, CPO
Your privacy isn’t a feature. It’s a fundamental right. We protect it. You control it. Together, we own the future.