murmur — privacy policy
Effective: July 6, 2026 · Applies to the murmur Chrome extension and murmur.day
murmur is anonymous and ephemeral by design. There are no accounts, no profiles, and no tracking. This page explains exactly what data the murmur Chrome extension handles.
What the extension stores on your device
- A random anonymous identifier (a UUID) that gives you a stable colour. It contains no personal information and never leaves your browser except as a transient presence key.
- Your per-site on/off choices.
All of this lives in your browser's extension storage and is removed when you uninstall the extension.
What is sent to our server
- Notes ("murmurs") you deliberately drop: the text
(max 140 characters), its position on screen, your colour, and a
one-way
SHA-256hash of the page address. Notes stop being readable by anyone 3 minutes after posting and are permanently deleted from the database on an hourly schedule. - Live cursor movements and in-progress typing: relayed in real time to people on the same page and never stored.
What we never do
- We never see the addresses of pages you visit — only irreversible hashes, which we use solely to connect people on the same page.
- We never read or transmit the content of pages you visit.
- We collect no names, emails, IP-address logs of our own, analytics, or advertising identifiers, and we sell nothing to anyone.
Infrastructure
Realtime relay and storage run on Supabase, whose infrastructure keeps standard operational server logs subject to its own privacy policy.
Your controls
- Toggle murmur off for any site from the extension icon — nothing is sent from sites you turn off (or from any non-HTTPS page).
- Uninstalling the extension removes everything stored locally.