We built Defenras on a single principle: protect your family and business without collecting your data.
Defenras Inc. is a Canadian cybersecurity company incorporated in Ontario, Canada. We build privacy-first protection software for families and businesses. Our registered address is in Brampton, Ontario, Canada.
For questions about this policy, contact us at support@defenras.com.
This privacy policy applies to all Defenras products and services, including:
We want to be explicit about what we never collect:
Guardian email address โ if you choose to enable Guardian Alerts, you provide an email address to receive notifications. This is stored locally on your device and sent only to our server for the purpose of delivering alerts. We do not use this email for marketing. License key โ used to verify your subscription. Processed server-side to validate entitlement, then the result is stored locally. Device ID โ a randomly generated anonymous identifier (e.g. "DF-x7Km9pR2") created on first install, never linked to your personal identity. Used to associate a license with a device.
IT alert email address โ if you enable IT Alerts, you provide an email address for uninstall notifications. Stored locally and used only for alert delivery. License key โ same as above. Device ID โ same randomly generated anonymous identifier. Admin PIN โ stored locally on the device only, in browser extension storage or mobile device storage. Never transmitted to our servers.
When our extension checks a URL against our threat database, the domain name is checked locally against a cached blocklist. For premium users performing a server-side sync, the request to update the blocklist is made without including your browsing history โ we receive only "give me the latest blocklist update" with your license key for authentication.
When you use the Panic Button feature in the mobile app, your GPS coordinates are transmitted to our server solely for the purpose of sending an emergency alert email to your designated guardian. This data is not stored after the alert is sent.
We use the minimal data we collect only for these specific purposes:
We do not use your data for advertising, profiling, analytics sold to third parties, or any purpose other than those listed above.
We do not sell, rent, trade or share your personal data with any third party for commercial purposes.
The following third-party infrastructure is used to operate our service:
None of these providers receive your browsing history, device usage data or any data beyond what is technically necessary to operate their respective services.
Defenras Business is designed to be privacy-respecting for employees. We do not provide employers with employee browsing history, the websites employees visit, or any surveillance data. The IT Alert feature notifies the administrator only when the extension is removed โ not what sites the employee visited.
The Admin PIN set by the employer is stored locally on the employee's device in browser extension storage. It is never transmitted to Defenras servers. If an admin PIN is lost, it can be reset by reinstalling the extension.
The Email Link Scanner (Business Pro) analyses link URLs inside Gmail and Outlook Web entirely within the browser. No email content, link text, sender information or email metadata is transmitted to Defenras servers. URL patterns are checked locally against our built-in pattern library.
Most data is stored locally on your device using browser extension storage (chrome.storage) or mobile AsyncStorage. This includes your settings, block statistics, license key, guardian/IT email and admin PIN.
The only data stored on our servers (Cloudflare KV) is:
You have the right to request deletion of any personal data we hold about you. To submit a deletion request, visit defenras.com/delete-request or email support@defenras.com with subject "Data Deletion Request".
We will process deletion requests within 30 days. After deletion, your license key will be deactivated and cannot be reused.
To delete locally stored data, simply uninstall the browser extension or mobile app. All locally stored settings, statistics and preferences are removed automatically.
Defenras Family is a parental control product designed to be installed by parents on children's devices. We do not knowingly collect personal information from children. The extension and app are operated by the parent or guardian โ the child's browsing activity is never transmitted to us.
If you believe a child has provided personal information to us directly, please contact us at support@defenras.com and we will delete it immediately.
All data in transit between your device and our servers is encrypted using HTTPS/TLS. License keys are hashed before storage. Admin PINs are never transmitted โ they exist only on your device.
Our infrastructure runs on Cloudflare Workers, which provides DDoS protection and edge security. We do not store sensitive financial data โ all payments are processed by Stripe.
We may update this privacy policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For material changes, we will notify active subscribers via email.
Continued use of Defenras products after a policy update constitutes acceptance of the updated policy.
Defenras Inc. is a Canadian corporation. This privacy policy is governed by the laws of the Province of Ontario and the federal laws of Canada, including the Personal Information Protection and Electronic Documents Act (PIPEDA).
For users in the European Union, we comply with applicable GDPR requirements. For users in the United Kingdom, we comply with the UK GDPR. For California residents, we comply with the CCPA.
We respond to all privacy inquiries within 5 business days.