Last Updated: March 15, 2026
This Privacy Policy describes how the PolyMax Chrome Extension ("PolyMax," "the Extension," "we," "us," or "our") collects, uses, stores, and protects information when you use our browser extension. By installing or using PolyMax, you acknowledge that you have read, understood, and agree to the practices described in this policy.
PolyMax is an independent, open-source browser extension. It is not affiliated with, endorsed by, or sponsored by Polymarket, Google, or any other third party.
PolyMax is intended solely for users who are 18 years of age or older. If you are under 18, you may not install or use this extension. We do not knowingly collect or process data from anyone under the age of 18. If we become aware that data has been collected from a minor, we will take reasonable steps to delete such data.
When the user clicks the PolyMax extension icon, the extension reads the text content of the currently active webpage. This content is used solely and exclusively to extract keywords and named entities for the purpose of matching relevant Polymarket prediction markets. Article text is processed entirely within the browser and is never transmitted to any server owned, operated, or controlled by PolyMax.
PolyMax does not read, monitor, collect, or store the content of any webpage unless the user actively opens the extension on that page. PolyMax has no background content scanning, passive monitoring, or persistent content collection of any kind.
To enable trading functionality, PolyMax requires the user to provide a private key associated with a Polymarket-compatible wallet. This private key and any API credentials derived from it are stored locally on the user's device using Chrome's built-in storage API. These credentials are used exclusively to authenticate and execute trades on Polymarket at the user's explicit direction.
Private keys are never transmitted to any external server other than Polymarket's own trading infrastructure (clob.polymarket.com) as required to execute user-initiated transactions. PolyMax does not have access to any remote server, backend, or database where credentials could be stored or forwarded.
PolyMax retrieves and displays the user's wallet balance, open positions, closed positions, and trade history. This data is obtained directly from Polymarket's public APIs and public blockchain records. PolyMax caches this data locally for display purposes only. No financial data is transmitted to any server controlled by PolyMax.
PolyMax retrieves prediction market data, orderbook pricing, and market metadata from Polymarket's public APIs (clob.polymarket.com, gamma-api.polymarket.com). This data is publicly available and does not contain any user-specific information.
PolyMax does not collect, access, store, transmit, or process:
Personally identifiable information (name, email address, physical address, phone number, date of birth, government-issued identification numbers)
Browsing history, web activity, or URLs visited beyond the single active tab when the user opens the extension
Location data (GPS coordinates, IP-based geolocation, or regional information)
Health information of any kind
Personal communications (emails, messages, or chat logs)
Cookies, tracking pixels, analytics data, or telemetry of any kind
Keystroke data, mouse movements, scroll behavior, or click patterns
Data from other browser tabs, windows, extensions, or applications
Device identifiers, hardware information, or operating system data
Search history or form input data
All data processed by PolyMax is stored exclusively on the user's local device using Chrome's storage API. PolyMax does not operate, maintain, or connect to any backend server, cloud storage, database, or remote infrastructure of any kind.
The following data may be retained in Chrome's local storage:
User's private key
Derived API credentials (API key, API secret, passphrase)
Cached market data and portfolio positions
User preferences and extension settings
Locally cached market data and portfolio information is refreshed on each session and does not persist beyond what Chrome's storage API retains. Authentication credentials persist until the user explicitly removes them or uninstalls the extension.
PolyMax does not sell, rent, lease, license, trade, or otherwise transfer user data to any third party for any purpose, including but not limited to advertising, analytics, marketing, data brokerage, or creditworthiness determination.
The only external services PolyMax communicates with are:
Polymarket CLOB API (clob.polymarket.com): For orderbook data retrieval and trade execution
Polymarket Gamma API (gamma-api.polymarket.com): For market metadata and search
These communications occur solely at the user's direction and contain only the minimum data necessary to retrieve market information or execute a requested trade. Polymarket's own privacy policy governs data processed by their services.
PolyMax's security model is based on local-only data processing. Because no data is transmitted to or stored on any PolyMax-controlled server, the attack surface is limited to the user's own device and browser environment.
API credentials are derived locally on the user's device through cryptographic signing. The derivation process occurs entirely within the browser and no intermediate or derived values are transmitted externally.
Users are solely responsible for the security of their own devices, browser environments, and private keys. PolyMax strongly recommends that users do not store private keys associated with wallets containing more funds than they are willing to risk. PolyMax is not responsible for any loss of funds resulting from device compromise, malware, browser vulnerabilities, phishing, or any other security incident beyond the extension's reasonable control.
Because all data is stored locally on the user's device, users have direct and complete access to all data at all times through Chrome's extension storage interface.
Users may delete all data stored by PolyMax at any time by:
Removing their private key from the extension settings
Clearing extension data through Chrome's settings (chrome://extensions)
Uninstalling the extension entirely
Upon uninstallation, all locally stored data associated with PolyMax is removed by Chrome automatically. No residual data is retained on any external server because no external server exists.
Users retain full control and ownership of their wallet private keys at all times. No data lock-in exists because PolyMax does not store data externally.
PolyMax does not use cookies, web beacons, tracking pixels, fingerprinting techniques, analytics services (such as Google Analytics), crash reporting tools, or any other tracking technology of any kind.
PolyMax interacts exclusively with Polymarket's publicly available APIs as described in Section 6. Users should review Polymarket's own privacy policy and terms of service for information on how Polymarket handles data transmitted through their APIs.
PolyMax does not integrate with, embed, or load content from any advertising network, analytics platform, social media service, or other third-party service.
For users located in the European Economic Area, PolyMax processes data based on the legal basis of user consent (provided by installing and actively using the extension). Because PolyMax does not collect personally identifiable information and stores all data locally on the user's device, the rights of access, rectification, erasure, restriction, portability, and objection are exercisable directly by the user through their own device without any request to PolyMax being necessary.
For California residents, PolyMax does not sell personal information as defined under the California Consumer Privacy Act. PolyMax does not collect personal information beyond what is described in this policy. California residents may exercise their rights under the CCPA by managing their local extension data as described in Section 8.
PolyMax's local-only architecture is designed to minimize regulatory exposure across jurisdictions. Because no personal data is collected, transmitted, or stored externally, PolyMax aims to comply with privacy regulations globally. Users are responsible for ensuring that their use of the extension complies with the laws of their own jurisdiction.
PolyMax does not knowingly collect or solicit data from children under 13 (or the applicable age of digital consent in the user's jurisdiction). If a parent or guardian becomes aware that a child has used the extension, they may uninstall it and all locally stored data will be automatically removed.
PolyMax is provided "as is" and "as available" without warranties of any kind, whether express or implied. PolyMax does not provide financial advice, investment advice, trading recommendations, or any other form of advisory service. Use of the extension to execute trades on Polymarket or any other platform is entirely at the user's own risk.
PolyMax is not responsible for:
Financial losses resulting from trades executed through the extension
Errors, delays, or failures in market data retrieval or trade execution
Losses resulting from unauthorized access to the user's device or private keys
Losses resulting from the user's failure to secure their credentials
Changes to Polymarket's APIs, terms of service, or operational status
Regulatory actions affecting the user's ability to trade on Polymarket
Any indirect, incidental, special, consequential, or punitive damages
Users acknowledge that prediction market trading involves financial risk, including the risk of total loss of funds, and that they are solely responsible for their own trading decisions.
Nothing in this extension or this policy creates, implies, or establishes any advisory, fiduciary, broker-dealer, or client relationship between PolyMax and the user. PolyMax is a software tool that facilitates user-directed interaction with third-party platforms. PolyMax does not recommend, endorse, or suggest any particular trade, market, or position.
We reserve the right to update this Privacy Policy at any time. Any changes will be reflected on this page with an updated "Last Updated" date. Material changes will be communicated through the Chrome Web Store listing. Continued use of the extension after changes are posted constitutes acceptance of the revised policy.
Users are encouraged to review this policy periodically.
If any provision of this Privacy Policy is found to be unenforceable or invalid by a court of competent jurisdiction, that provision shall be limited or eliminated to the minimum extent necessary so that this policy shall otherwise remain in full force and effect.
This Privacy Policy, together with any terms of service published alongside it, constitutes the entire agreement between the user and PolyMax regarding the collection and use of data in connection with the extension.
For questions, concerns, or requests regarding this Privacy Policy, please contact the developer.