Legal

Privacy Policy

Last updated: June 20, 2026

Short version

Hydra is a local-first application. Your conversations, tokens, and session data stay on your machine. We don't operate servers that receive, store, or process your messaging data. The desktop app and Chrome extension work entirely offline after installation. If you never use our optional cloud features, we have no data about you.

1. Who We Are

Hydra is developed and maintained by Boe Ventures AS, a Norwegian company. For data protection purposes, we are the data controller for any personal data we process (which is very little — see below).

Contact: privacy@boe.ventures

2. What Hydra Does

Hydra is a local bridge for your messaging conversations. The Chrome extension reads your existing browser sessions on platforms like Slack, LinkedIn, Instagram, and others, and writes that data to a local SQLite database on your Mac. The desktop app provides a UI for browsing that data. An optional MCP server exposes the data to local AI agents.

All of this happens locally on your machine. No data is sent to our servers.

3. What Data Stays Local

The following data is created and stored exclusively on your device:

  • Conversation data — messages, threads, participants, and metadata fetched from your connected platforms
  • Authentication tokens — session cookies and API tokens extracted from your browser sessions, used to fetch data on your behalf
  • People records — cross-platform identity resolution linking the same person across different platforms
  • Connection state — which platforms are connected, when they last synced, and their status

This data lives in ~/.hydra/data/ on your Mac. You can inspect, export, or delete it at any time. When you uninstall Hydra, remove this directory to delete all data.

4. What We Collect

4.1 Website visitors

When you visit our website at hydra.boe.ventures, we may collect:

  • Standard web analytics (page views, referrer, browser type) via privacy-focused analytics
  • IP addresses are anonymized and not stored in identifiable form

4.2 Chrome Web Store

If you install the extension from the Chrome Web Store, Google collects standard installation analytics. We receive aggregate install counts and Chrome version distribution — no personally identifiable information.

4.3 Optional cloud features (future)

We may offer optional cloud features in the future (cross-device sync, cloud backup, hosted MCP). These will be clearly opt-in, and this policy will be updated before they launch. The core local-first functionality will always work without an account or cloud connection.

4.4 Crash reports and diagnostics

If you opt in to crash reporting, we may receive error stack traces and basic device information (OS version, app version). These never contain message content or authentication tokens.

5. What We Don't Do

  • We never receive, store, or process your conversations on our servers
  • We never receive your platform authentication tokens
  • We never sell personal data
  • We never use your data for advertising
  • We never share data with third parties for their marketing purposes

6. Third-Party Platform Policies

Hydra accesses third-party platforms using your existing browser sessions. Your use of those platforms is governed by their respective terms of service and privacy policies. Hydra does not modify your accounts or post content on your behalf without your explicit action and approval.

7. Data Security

Because your data stays on your device, security is primarily your responsibility. We recommend:

  • Enabling FileVault (full-disk encryption) on your Mac
  • Using a strong device password
  • Keeping macOS and Chrome updated for the latest security patches

The Hydra database is not encrypted at rest by default. If you require encryption at rest, enable FileVault which encrypts your entire disk.

8. Your Rights (GDPR)

Since we don't hold your conversation data, most GDPR rights are exercised by you directly — you can access, export, correct, or delete your local Hydra database at any time without contacting us.

For any data we do hold (website analytics, crash reports), you have the right to:

  • Access your data
  • Request correction or deletion
  • Object to processing
  • Data portability
  • Lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet)

Contact privacy@boe.ventures for any requests.

9. Open Source & Transparency

Hydra is open source. You can inspect the complete source code to verify our privacy claims. The extension's content scripts, background workers, and data handling are all publicly auditable on GitHub.

10. Changes

We'll update this policy as needed. Material changes (especially if we ever collect more data) will be announced via our GitHub repository and website. The "last updated" date at the top reflects the latest revision.

11. Contact

Boe Ventures AS
Norway
privacy@boe.ventures