TL;DR — Privacy Summary

1.100% Local Processing — Your Instagram data never leaves your device. We cannot see, access, or store your follower information.
2.No Account Required — No login, no registration, no personal information collected.
3.Optional Analytics — We use privacy-friendly analytics that you can disable with one click.
4.No Cookies for Tracking — We only use essential cookies for theme preferences.

1. Data We Process Locally

When you upload your Instagram data export (ZIP file), all processing happens entirely within your web browser:

Your followers and following lists
Account relationships (mutual, non-mutual, etc.)
Timestamps from Instagram's export

This data is stored in IndexedDB (your browser's local database) and never transmitted to any server. We physically cannot access your Instagram data.

2. Data We Collect

We collect minimal, anonymized analytics to improve the service:

2.1 Analytics (Optional)

We use privacy-friendly analytics services (Vercel Analytics, Umami) that collect:

Page views and navigation patterns
Device type and browser (anonymized)
Geographic region (country-level, not precise location)
Referral sources

You can disable all analytics by clicking "Don't Track Me" in the footer. Your preference is stored locally and respected immediately.

2.2 Local Storage

We store the following in your browser's local storage:

Theme preference (dark/light mode)
Analytics opt-out preference
UI state (filter selections)

3. Data We Do NOT Collect

To be absolutely clear, we never collect or have access to:

Your Instagram username or profile
Your followers or following lists
Any content from your Instagram export
Your email address or personal information
Your IP address (analytics are anonymized)
Any data that could identify you personally

4. How Your Data is Protected

4.1 Browser Sandboxing

All data processing occurs within your browser's security sandbox. IndexedDB storage is:

Isolated to this website only
Inaccessible to other websites or applications
Encrypted at rest by modern browsers
Deleted when you clear browser data

4.2 No Server Storage

Our servers only serve static files (HTML, CSS, JavaScript). There is no backend database, no user accounts, and no way for us to store your data even if we wanted to.

4.3 Open Source

Our code is open source under the MIT license. You can audit exactly what the application does at GitHub.

5. Third-Party Services

5.1 Hosting (Vercel)

Our website is hosted on Vercel. They may collect standard web server logs (IP addresses, request timestamps) as part of their infrastructure. See Vercel's Privacy Policy.

5.2 External Links

When you click on an Instagram profile, you are redirected to Instagram.com. Instagram's privacy policy applies to any interaction on their platform.

6. Children's Privacy

This service is not intended for children under 13 years of age. We do not knowingly collect any information from children. Since all data processing is local and we collect no personal information, there is no data to protect or delete.

7. Your Rights

Since we don't collect personal data, traditional data rights (access, deletion, portability) don't apply in the usual sense. However:

Delete your data: Clear your browser's IndexedDB storage or use the "Clear Data" button in the app
Opt out of analytics: Click "Don't Track Me" in the footer
Audit the code: Review our open-source codebase on GitHub

8. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Continued use of the service after changes constitutes acceptance of the updated policy.

9. Contact Us

If you have questions about this Privacy Policy or want to exercise your data rights, please contact us at: privacy@safeunfollow.app

Privacy by Design

We built SafeUnfollow with privacy as the foundation, not an afterthought. Your data stays yours — always.