Bellek - Smart Vocabulary Builder
Last Updated: 1 August 2026 | Effective Date: 1 August 2026
Welcome to Bellek ("we," "us," or "our"). We are committed to protecting your privacy and being transparent about how we collect, use, and protect your information. This Privacy Policy explains our data practices for both our Chrome browser extension and web application.
By using Bellek, you agree to the collection and use of information as described in this Privacy Policy.
You can use Bellek's free features without an account. If you choose to create a free Bellek account (used to back up your vocabulary and required to purchase Premium):
A legacy sync option (a unique sync link generated via QR code, derived from an email address) also exists for mobile study and is described in Section 2.3.
If you purchase Premium:
Subscriptions purchased through our previous payment provider, ExtensionPay, before the transition remain honored during the transition period (see Section 4.7).
When you save words using Bellek, we collect and store:
Important: The source URL helps you remember where you encountered each word and provides clickable context. This is part of the core learning experience.
We collect anonymous usage analytics to understand how Bellek is used and improve the product. This data is collected via PostHog (analytics) and Google Analytics 4 (web app only):
bellek_ext_abc123)This data contains NO personal identifiers and cannot be linked back to you. We do not track which words you save, which websites you visit, or any content you interact with.
We use Sentry to detect and fix bugs: error messages and stack traces (technical crash data), browser type and version, extension/app version.
Privacy protections built in: before any error report is sent, we automatically strip email addresses, IP addresses, usernames, sync IDs, cookies, and request headers. Error data is sampled at 10% and rate-limited to minimise collection.
Browser type and version, operating system, extension version, and timestamps of data synchronisation events.
Chrome Extension: uses Chrome's chrome.storage.local API. All vocabulary data is stored locally on your device, works offline, and persists between sessions.
Web Application: uses browser localStorage with the same local-first approach.
?sync=abc123).Save and organise your vocabulary words; provide definitions, pronunciation audio, translations, and context; track your learning progress and statistics; generate quizzes and review sessions; back up and sync your data (if you have an account or use sync).
Understand which features are most useful via anonymous analytics; monitor error rates and fix bugs; improve performance; develop new features based on anonymous usage patterns.
Process payments via Stripe; manage free trials and subscriptions (including trial-ending reminders and failed-payment notices); unlock Premium features for subscribers; honor legacy ExtensionPay subscriptions during the transition period.
Send important service updates; transactional billing emails (via Stripe and our email provider); respond to support requests; notify about privacy policy changes.
We do NOT use your data for: advertising or marketing to third parties, selling to anyone, training AI models, or profiling/automated decision-making.
We do NOT share your data with advertising networks, data brokers, or social media platforms.
Regular security review of the codebase; minimal data collection principle; no third-party advertising or tracking scripts.
Cloud data for inactive accounts (no activity for 12+ months) may be deleted after notification. Sentry error data deleted after 90 days.
View your data in the Bellek dashboard; export via the built-in CSV Export; or contact us for a complete copy.
Edit words, notes, and settings directly in Bellek; delete individual items; delete your account in-app (Section 6.2).
Withdraw consent by deleting your account or disabling sync; contact us to opt out of anonymous analytics; object to processing by contacting us.
Right to access, rectification, erasure, restriction of processing, data portability, objection, and to lodge a complaint with a supervisory authority (ICO in the UK).
Right to know, delete, opt out of sale (we don't sell data), and non-discrimination.
To exercise your rights, contact: hello@bellek.co
Bellek is designed as an educational tool suitable for all ages. However: we do not knowingly collect personal information from children under 13 without parental consent; if an account is created by a child under 13, parental consent is required; parents can review and delete their child's data by contacting us. COPPA compliance applies for U.S. users under 13.
Bellek is developed in the United Kingdom and uses cloud services located in the EU/UK: Supabase (London, UK), PostHog (EU), Sentry (EU). Stripe processes payments globally under its own GDPR-compliant safeguards (including standard contractual clauses). Your vocabulary and account data remain within the EEA/UK.
Bellek requests the following Chrome permissions:
activeTab — capture text when you highlight words. Only the text you've selected; nothing else.storage — save your vocabulary locally in your browser.alarms — schedule study reminders, subscription status refreshes, and internal maintenance tasks.notifications — study reminders and important account/billing alerts (e.g., trial ending). Fully disableable.identity — used only for the optional "Sign in with Google" flow (chrome.identity), so you can create a Bellek account with your Google email. Never used to access your Google data.<all_urls> (content script) — lets the word-lookup popup appear on any website. It activates only when you select text; it does not read pages passively or track browsing.media.merriam-webster.com (host access) — fetches pronunciation audio files for the words you look up.We use the minimum permissions necessary and never abuse access.
Bellek does NOT use tracking cookies, third-party advertising cookies, or social media pixels. We use browser localStorage/session storage for app functionality, secure authentication tokens for signed-in sessions, and anonymous analytics (randomly generated IDs). Stripe's checkout pages use Stripe's own cookies per their policy.
We may update this policy for new features, legal requirements, or improved practices. We notify via email (account holders), in-app banner, and the "Last Updated" date. Material changes get 30 days' notice. Continued use after changes take effect constitutes acceptance.
In the unlikely event of a breach affecting your personal information, we will notify affected users within 72 hours of discovery, explain what was affected and what we're doing, and notify regulators as required by law.
We do NOT share personal information with third parties for their direct marketing purposes.
We use only anonymous analytics with no personal tracking, so DNT settings do not change Bellek's behaviour. We respect your privacy regardless.
Code License: All Rights Reserved. We welcome responsible disclosure of security vulnerabilities via hello@bellek.co.
Email: hello@bellek.co · Response within 5 business days.
Data deletion requests: subject "Data Deletion Request". Security issues: subject "Security — Confidential" (24-hour response).
Service Provider: Ceylan Inan, United Kingdom · Contact: hello@bellek.co
Data Controller: Ceylan Inan (for GDPR purposes) · DPO: not required (solo developer, small-scale processing)
Supervisory Authority: UK ICO (https://ico.org.uk) or your local EU data protection authority.
By using Bellek, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.
What we collect: words you save (with definitions, context, source URLs, audio references); your email and password/Google email if you create an account; subscription status if you buy Premium (Stripe holds your card, not us); anonymous usage analytics; anonymized error reports.
What we don't collect: browsing history; card numbers; the specific words you save are never sent to analytics; no advertising data.
Where data lives: primarily on your device; optionally in the cloud (Supabase, London) if you have an account or use sync; payments with Stripe.
Who we share with: Supabase (accounts/backup), Stripe (payments), ExtensionPay (legacy subscriptions only, until retired), PostHog/GA4 (anonymous analytics), Sentry (anonymous errors), Merriam-Webster (the word you look up). Nobody else.
Your control: export anytime, delete your account in-app, accounts and sync are optional.
Questions? hello@bellek.co