Privacy policy
Crossroad — web app and Chrome extension · Last updated: 16 July 2026
Crossroad is a tool for capturing product insights (text you select, screenshots you
snip) into a workspace you own or were invited to, and asking questions across them. This policy
describes what data the tool handles and where it goes. The guiding principle: nothing is
collected beyond what you deliberately capture, and it goes only to Crossroad and the providers
listed below.
Data you actively capture
- Selected text you choose to save (via right-click, shortcut, or the popup).
- Screenshots of a region you explicitly drag-select (Cmd/Ctrl+Shift+E), stored
for provenance and transcribed to text.
- Page context attached to a capture: URL, page title, and — when the page
exposes them — author, publish date, language, site name, and the nearest section heading.
The extension reads a page only when you trigger a capture on it. It does not track
browsing, does not read pages in the background, and captures nothing without a deliberate action
(clipboard-based captures always show a confirmation dialog first).
Data the app stores as you use it
- Your Ask conversations are saved so you can pick one up again: the questions you
ask and the answers you get back. They stay private to you, and other members of the workspace
cannot see them. You can delete any conversation from the Ask page at any time.
- Workspace activity (who captured, edited or deleted what) is visible to the
members of that workspace.
- Feedback you send us from the in-app form goes to the founder's inbox by email,
together with your email address and the workspace name, so we can reply to you. It is delivered
through Resend and is not stored in the app.
Account data
Sign-in uses Google. We store your Google account's basic profile: name, email address, and
profile picture. We never see or store a password. Sessions and refresh tokens are stored hashed.
Where your data lives
For the hosted service at joincrossroad.com, Crossroad operates the backend on
European infrastructure (a server in Germany), reached through Cloudflare. Data is isolated per
workspace — only members of a workspace can see its data. Deleted material goes to a 30-day trash,
after which it is permanently removed and its stored files (screenshots) are erased from
disk. Backups are encrypted before they leave the server and stored off-site, rotating on a rolling
cycle. The software can also be self-hosted, in which
case your own operator — not Crossroad — hosts and controls the data.
Subprocessors
The hosted service relies on these providers to operate. Captured content is sent only to the
AI providers, and only to deliver the features you use:
- Anthropic (Claude) — extracts insights from captured text and transcribes
captured screenshots. Receives the captured content.
- Voyage AI — computes text embeddings for search. Receives the captured text.
- Hetzner (Germany) — hosts the backend server and stored data.
- Cloudflare — DNS, TLS and the network layer in front of the service.
- Resend sends our transactional email (welcome, workspace invites, waitlist
confirmations). It receives the recipient's email address and name, never your captured content.
- PostHog (EU region) — product analytics for the web app, only with your consent. Receives usage events (pages viewed, features used), not your captured content.
These providers process content to provide the service; they are not sent your browsing
activity, and captured data is not used to train the AI models under the API terms in effect.
What we don't do
- No selling or sharing of data with data brokers or advertisers, and no third-party advertising trackers. The browser extension runs no analytics at all.
- No collection of browsing history, keystrokes, or page content you didn't capture.
- No use of captured data for purposes unrelated to the tool's single purpose (capturing and querying your insights).
Chrome permissions, briefly
- contextMenus / activeTab / scripting — the right-click menu, and reading your selection or showing the snip overlay on the tab where you trigger a capture.
- clipboardRead — only as a fallback in canvas editors (e.g. Google Docs), and always behind a confirmation dialog.
- storage / identity — your sign-in tokens, kept locally in the browser.
- Host access — to
app.joincrossroad.com only. The extension is locked to
that backend; there is no setting that points it anywhere else.
Your controls
- Download your data (a JSON export of your account, every workspace you can see, and your Ask conversations) and delete your account at any time from Workspace → Your data. Deleting your account permanently removes any workspace you solely own, including all captured content and stored files, and erases your Ask conversations everywhere else.
- Edit or delete any source or insight in the app; admins can restore from trash for 30 days, after which it is permanently erased from disk.
- Leave a workspace at any time; removing a member immediately ends their access.
- Sign out to revoke the extension's tokens server-side.
- Workspace activity is visible to its members (who captured/edited/deleted what).
Data processing
When you use Crossroad for business, captured content may contain other people's personal data. In
that case you are the data controller and Crossroad is your processor — see the
Data Processing Addendum for the sub-processor list, security measures, and how
we handle data-subject requests.
Cookies and analytics
The website and web app use a few strictly-necessary cookies (to keep you signed in and to
remember your cookie choice). We also use optional product analytics to understand how Crossroad is
used — it only runs if you consent, you can reject or withdraw it at any time, and it never runs in
the browser extension. Every cookie and provider is listed in our
Cookie policy.
Contact
Questions, or any privacy request you can't complete in the app:
[email protected]. We respond to access, correction,
and erasure requests within 30 days.
Terms of Service · Privacy policy · Cookie policy · Data Processing Addendum · Cookie settings