Privacy Policy
Last updated: March 28, 2026
Veil is a browser extension that provides end-to-end encryption for web-based chat messengers. This policy explains what data Veil handles and how.
Data Veil does NOT collect
- No personal information (name, email, phone number, or any identifiers)
- No message content — all encryption and decryption happens locally in your browser
- No browsing history or web activity
- No analytics, telemetry, or usage tracking
- No cookies or third-party tracking
Data stored locally on your device
- Language preference (English or Persian) — stored in chrome.storage.local
- Per-site CSS selectors for input detection — stored in chrome.storage.local
- Session encryption keys — stored in chrome.storage.session (RAM only, never written to disk, erased when the browser closes)
Network requests
Veil makes one optional network request per session to a verification server (verify.veil.kiancode.dev) to detect man-in-the-middle attacks. This request contains only a SHA-256 hash of the session's public key. No user data, message content, or identifying information is transmitted.
Third parties
Veil does not share any data with third parties. There are no ads, no analytics services, and no data brokers.
Open source
Veil's complete source code is available at github.com/KianAttar/veil. You can audit exactly what the extension does.
Disclaimer
Veil is provided "as is", without warranty of any kind, express or implied. The author is not liable for any damages, data loss, or security incidents arising from the use of this software. Veil is free, open-source software distributed under the MIT License, which contains the full warranty disclaimer.
Veil is a security tool, not a guarantee of security. Users are responsible for verifying session fingerprints and understanding the limitations described on the home page.
Changes to this policy
If this policy is updated, the changes will be posted on this page with an updated date. Continued use of the extension after changes constitutes acceptance.