Privacy Policy
Clean, operated by Clean AI Labs, Inc. · Last updated June 15, 2026
This policy explains what data Clean and the “Clean for LinkedIn” Chrome extension collect, why we collect it, how it is stored and shared, and the controls you have. It is written to comply with the Chrome Web Store Limited Use and data disclosure requirements. By installing the extension or using the service you agree to this policy.
Who we are
Clean is a product of Clean AI Labs, Inc.. The extension connects a user's own LinkedIn account to that same user's Clean account so they can read and act on their own LinkedIn data through Clean's API. You can reach us any time at hello@tryclean.ai.
What the extension collects
The extension has a single purpose: to securely connect, and keep connected, the user's own LinkedIn account to their own Clean account. To do that it handles the following data, and nothing else:
- LinkedIn session cookies. After you sign in to LinkedIn through the extension's managed-proxy connect flow, the extension reads exactly three cookies:
li_at,JSESSIONID, andli_a. These are LinkedIn session/authentication tokens. They are sent over HTTPS to your own Clean account and stored encrypted at rest (AES-256-GCM). No other cookies are read or transmitted. - LinkedIn GraphQL queryId hashes. As you browse LinkedIn normally, the extension observes the URLs of requests your own browser already sends to LinkedIn's Voyager GraphQL endpoint and extracts the rotating
queryIdidentifiers (an operation name plus a hash). This keeps Clean's server-side integration working when LinkedIn rotates those identifiers. Only the operation name and hash are recorded, never request bodies, response bodies, or query variables. - Optional interaction-timing telemetry (off by default). If, and only if, you turn on the “Human-like timing” toggle in the extension, it records anonymous interaction timing on linkedin.com: inter-keystroke intervals (the time between keystrokes, never the characters typed), paste timing markers (that a paste occurred, never its contents), scroll depth and velocity, hover dwell times, tab focus/blur events, page-type navigation (e.g. “profile”, “search”, “feed”), local hour, day of week, and viewport size. This is aggregated into session summaries and used solely to model human-like usage cadence so that activity on your own account stays within natural patterns. The toggle is off by default; turning it off immediately purges the local buffers.
- Extension settings. Your Clean API base URL, API key, and a short-lived connect-session token are stored locally in
chrome.storage.localso the multi-step connect flow can complete.
What the extension does NOT collect
- Message text, post content, or profile content.
- Search queries or GraphQL query variables.
- The actual characters you type (only keystroke timing, when telemetry is enabled).
- Passwords, payment details, or any cookies other than the three named above.
- Any data from sites other than linkedin.com and your own Clean dashboard.
How we use the data
Session cookies are used only to operate your own LinkedIn account through Clean at your direction. queryId hashes are used only to keep the integration in sync. Optional timing telemetry, when enabled, is used only to keep automated activity on your account within human-like patterns. We do not use any of this data for advertising, profiling of other people, or any purpose unrelated to the extension's single purpose.
How we share data
We do not sell or rent your data, and we do not transfer it to third parties except as needed to run the service. Data flows only to your own Clean account and to the infrastructure providers that host it (e.g. cloud hosting and managed database providers) acting as our processors under contract. We do not use or transfer your data to determine creditworthiness or for lending purposes. This use complies with the Chrome Web Store Limited Use requirements.
Storage, security, and retention
Session cookies are encrypted at rest with AES-256-GCM and transmitted only over HTTPS. Telemetry and settings buffered in the browser live in chrome.storage.local on your device. You can delete server-side data at any time by disconnecting the account in your Clean dashboard or by emailing us; deletion removes the stored cookies and associated records.
Your controls
- Turn the optional timing telemetry on or off from the extension popup at any time. Turning it off purges local buffers.
- Disconnect a LinkedIn account from your Clean dashboard to revoke and delete its stored cookies.
- Uninstall the extension to stop all local collection immediately.
- Email hello@tryclean.ai to request export or deletion of your data.
Children
Clean is a business tool and is not directed to children under 16. We do not knowingly collect data from children.
Changes to this policy
We may update this policy as the product evolves. Material changes will be reflected here with a new “Last updated” date, and where appropriate in the extension or dashboard.
Contact
Questions about this policy or your data? Email hello@tryclean.ai. You can also visit our support page.