Terms of Service

Personal Browser Sync Service

These terms govern your use of Choco, a personal browser synchronization service designed for individual use across your own devices.

Definitions and Terminology

Key Terms Used in This Service

📱 "Teams" refers to:

  • Account Categories: Different groupings of your personal accounts (e.g., "Personal", "Work", "Gaming")
  • Credential Collections: A way to organize and separate different sets of your login credentials by purpose or context
  • Sync Groups: Collections that define which of your personal devices can access which credentials

💻 "Members" refers to:

  • Your Personal Devices: Your own devices (laptop, desktop, phone, tablet) that sync credentials within an account category
  • Device Instances: Different browser instances or profiles on your devices that need credential access
  • Authorized Endpoints: Your personal endpoints that can access and sync credential data for a specific account category

Example: You might have a "Gaming" account category with your gaming PC, laptop, and phone - all your own devices that need access to your gaming platform logins.

1. Acceptance of Terms

By accessing or using Choco ("Service"), you agree to be bound by these Terms of Service ("Terms"). If you do not agree to these Terms, you may not use the Service.

We may update these Terms from time to time. Your continued use of the Service after any changes constitutes acceptance of the new Terms.

2. Service Scope and User-Configured Sync

Choco provides a user-configured browser synchronization service with the following components:

  • Browser Extension: Chrome extension that captures and syncs browser sessions, cookies, localStorage, and sessionStorage
  • Web Dashboard: Interface for managing teams, members, credentials, and sync configurations
  • User-Configured Storage: You choose where your data is stored

2.1 Storage Configuration Options

When you opt-in to use the service, you have full control over where your sync data is stored:

  • Bring Your Own Database (BYOD): Configure your own Supabase, PostgreSQL, or compatible database
  • Your Cloud Storage: Use your own cloud database instances
  • Managed Service: Use our encrypted storage service

All data is stored encrypted regardless of your chosen storage option.

2.2 Extension Functionality

The browser extension synchronizes:

  • Browser cookies and authentication tokens
  • Local storage and session storage data
  • Browser fingerprinting data for session validation
  • Team and member configurations
  • Credential validation and expiry tracking

4. Personal Use Only

Important: This service is designed for personal use only. You may only sync sessions across devices that you personally own and control.

  • Use the Service only on devices you personally own
  • Do not share your account credentials with others
  • Do not use the Service for commercial purposes
  • Do not attempt to sync sessions for other users

5. Account Registration and Credential Handling

To use the Service, you must create an account and follow security protocols:

4.1 Account Security

  • Provide accurate and complete registration information
  • Use strong, unique passwords for your account
  • Enable multi-factor authentication when available
  • Notify us immediately of any unauthorized use
  • You are responsible for all activities under your account

4.2 Extension Credential Handling

Critical: The extension handles sensitive browser data including authentication tokens and session cookies.

  • Token Management: JWT tokens and refresh tokens are handled securely
  • Cookie Security: Browser cookies are validated before sync
  • Data Encryption: All data is stored encrypted in your configured storage
  • Credential Validation: Extension validates token expiry and authenticity
  • Secure Transmission: All credential data uses TLS 1.3 encryption in transit

4.3 Your Responsibilities

  • Only install the extension on devices you personally own and control
  • Regularly review and clean up stored credentials through the dashboard
  • Monitor credential expiry and refresh tokens as needed
  • Report any suspicious activity or unauthorized credential access immediately
  • Keep your browser and extension updated to the latest versions

6. Acceptable Use Policy

5.1 Prohibited Activities

You agree not to:

  • Illegal Content: Use the Service to sync, store, or transmit any illegal content or data
  • Unauthorized Access: Attempt to gain unauthorized access to the Service, other users' accounts, or third-party systems
  • Malicious Activities: Use the Service to transmit malware, viruses, or other harmful code
  • Service Disruption: Interfere with, disrupt, or overload the Service or its servers
  • Reverse Engineering: Reverse engineer, decompile, disassemble, or attempt to derive source code
  • Account Sharing: Share your account credentials or allow others to use your account

5.2 Extension-Specific Restrictions

  • No Credential Harvesting: Do not use the extension to harvest or collect credentials from other users
  • No Automated Abuse: Do not create automated systems to abuse the sync functionality
  • No Data Mining: Do not use the Service to mine or extract data from synchronized sessions
  • Respect Rate Limits: Do not exceed API rate limits or attempt to circumvent usage restrictions

5.3 Content Responsibility

You are solely responsible for all content, data, and credentials synchronized through the Service.

7. Privacy and Data

Your privacy is important to us. Please review our Privacy Policy to understand how we handle your data:

Key Privacy Principles:

  • We do not store your browsing data or credentials on our servers
  • When you opt-in, you configure your own storage or use our encrypted service
  • All data is stored encrypted in your chosen storage location
  • You maintain full control over your data location and access
  • You can delete your data at any time through the dashboard
  • Our Privacy Policy is incorporated into these Terms by reference

8. Payment Terms and Licensing

7.1 Service Pricing

Choco is currently provided as a free service. If we introduce paid features in the future:

  • We will provide 30 days advance notice of any pricing changes
  • Existing users will have grandfathered access to current features
  • Premium features will be clearly marked and optional

7.2 License Grant

Subject to these Terms, we grant you a limited, non-exclusive, non-transferable license to:

  • Install and use the browser extension on your personal devices
  • Access and use the web dashboard for personal sync management
  • Sync your browser sessions across your own devices

7.3 Future Payment Terms

If paid features are introduced, the following terms will apply:

  • Billing: Monthly or annual subscription billing
  • Refunds: 14-day refund policy for subscription cancellations
  • Auto-renewal: Subscriptions auto-renew unless cancelled
  • Price Changes: 30-day notice for price increases

9. Service Availability

We strive to maintain high availability but cannot guarantee uninterrupted service. We may temporarily suspend the Service for maintenance, updates, or other operational reasons.

10. Intellectual Property

The Service and its original content, features, and functionality are owned by Choco and are protected by:

  • Copyright, trademark, and other intellectual property laws
  • International copyright treaties and conventions
  • Other proprietary rights

11. Disclaimers

THE SERVICE IS PROVIDED "AS IS" WITHOUT WARRANTIES OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT.

12. Limitation of Liability

IN NO EVENT SHALL CHOCO BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING WITHOUT LIMITATION, LOSS OF PROFITS, DATA, USE, GOODWILL, OR OTHER INTANGIBLE LOSSES.

13. Termination and Data Deletion

12.1 Termination by Us

We may terminate or suspend your account immediately, without prior notice, for:

  • Violation of these Terms or Acceptable Use Policy
  • Fraudulent, abusive, or illegal activity
  • Security breaches or compromised accounts
  • Extended periods of inactivity (12+ months)

12.2 Termination by You

You may terminate your account at any time through:

  • Dashboard → Profile tab → Account deletion
  • Email request to support@usechoco.com

12.3 Data Deletion Upon Termination

Upon account termination, the following data deletion timeline applies:

  • Immediate: Account access is revoked and login disabled
  • Within 24 hours: Synchronized credentials and session data are deleted
  • Within 7 days: Account information and preferences are permanently deleted
  • Within 30 days: All backup copies and log references are purged
  • BYOD Users: Data in your own database remains under your control

12.4 Data Export Before Termination

Before deleting your account, you can export your data through the dashboard. We recommend exporting any important configurations or team settings you wish to preserve.

14. Governing Law and Dispute Resolution

13.1 Dispute Resolution Process

We encourage resolving disputes through the following process:

  1. Direct Contact: Contact us at legal@usechoco.com to discuss the issue
  2. Good Faith Negotiation: We will attempt to resolve disputes within 30 days
  3. Mediation: If direct negotiation fails, disputes may go to mediation
  4. Arbitration: Binding arbitration as a final resort for unresolved disputes

13.2 Jurisdiction and Venue

Any legal proceedings shall be conducted in accordance with applicable laws. You consent to the personal jurisdiction of appropriate courts.

13.3 Class Action Waiver

You agree that any dispute resolution proceedings will be conducted only on an individual basis and not in a class, consolidated, or representative action.

15. Contact Information

If you have any questions about these Terms, please contact us:

  • Email: legal@usechoco.com
  • Support: support@usechoco.com
  • Website: https://usechoco.com

By using Choco, you acknowledge that you have read, understood, and agree to be bound by these Terms of Service.