Linear Canvas

Privacy Policy

Effective date: January 13, 2026

Napsis (“we,” “us,” “our”) provides a browser extension and related sites that enhance the Canvas LMS experience. In some places our product or listings may still refer to “Napsis” during a brand transition; this policy applies to both names. Questions or requests: hello@napsis.com.

What this policy covers

This notice explains how we collect, use, disclose, and protect information when you use:

  • Our browser extensions and websites
  • Our support channels

We aim to collect the minimum data needed to run the service. We do not sell personal information and do not use your data for cross‑context behavioral advertising.

Information we collect

You provide

  • Account or contact information you submit (e.g., email, name)
  • Messages you send to support

Collected automatically

  • Basic device and usage data (browser/OS type and version, feature interactions, basic diagnostics, crash logs)
  • Non-identifying analytics in aggregate (e.g., counts of feature usage)
  • Stored locally in your browser (not sent to us unless you choose to sync or reach out to support)
  • Extension settings, theme choices, and other preferences using browser storage APIs

How we use information

  • Operate the extension and sites, deliver features, and keep services secure
  • Provide support when you contact us
  • Measure de‑identified, aggregated usage to guide product decisions
  • Communicate important service updates

We may use de‑identified or aggregated data that cannot reasonably be linked to you.

Legal bases (EU/UK, where applicable)

  • Contract: To provide and support the service
  • Legitimate interests: Security, service improvement, minimal analytics

Sharing and subprocessors

We do not currently use third‑party service providers to process personal data on our behalf.

If that changes, we will update this policy and publish an up‑to‑date list of core subprocessors and their roles.

Data retention

  • Account/support data: Retained while you use the service and as needed for legal/accounting requirements.
  • Extension preferences: Kept locally in your browser until you remove the extension or reset settings.

Your choices and rights

Everyone

  • Email hello@napsis.com to request access, correction, deletion, or a copy of your data

EU/UK residents

You may have rights to access, correct, delete, port, restrict/oppose processing, and withdraw consent. You can also complain to your local data protection authority.

United States (state privacy laws, including California)

We do not sell or share personal information for cross‑context behavioral advertising. If that changes, we’ll provide a “Do Not Sell or Share My Personal Information” link and honor Global Privacy Control (GPC) signals.

If your state law grants additional rights (access, delete, correct, portability, limit the use of sensitive personal information), you can exercise them by emailing hello@napsis.com.

Verification: We may request information to verify your identity and protect your account.

Timing: We aim to respond within 45 days (and may extend where allowed by law).

Appeal: If we deny a request, you may ask us to review the decision at the same email; we’ll explain our reasons and how to contact your regulator.

Do Not Track & GPC

Browser DNT signals lack a common standard, so we do not respond to DNT. We do honor GPC for applicable opt‑outs under state law.

Children’s privacy

We don’t knowingly collect personal information from children under 13. If you believe a child provided personal information, contact us and we’ll delete it.

Education data notice (FERPA)

We are a direct‑to‑student tool. Unless we enter into a written agreement with an institution designating us as a school official, we do not operate under FERPA on a school’s behalf.

International transfers

We operate in the United States. If we transfer personal data internationally, we use appropriate safeguards (for example, EU Standard Contractual Clauses for EEA/UK users) and apply additional measures as needed.

Security

We use industry‑standard safeguards, including encryption in transit, restricted token access, and least‑privilege internal controls. No method of transmission or storage is 100% secure, but we work continuously to protect your information.

Changes to this policy

We’ll update this page when we make material changes and adjust the Effective date above. For significant changes, we’ll provide a more prominent notice (for example, in‑product).

Contact

Questions or requests: hello@napsis.com