Company Logo
The policies are available only in English

Supreme Extension for VSCode

Privacy Policy

1. About This Privacy Policy

1.1 Scope: These Privacy Policy ("Terms") govern your access to and use of the Silence AI platform and services provided by Silence AI LLC ("Silence AI," "we," "us," or "our"). These Terms apply to you, the individual or entity accessing our services ("you" or "your"), and your employer or principal if you are acting on their behalf.

1.2 Relationship to Other Terms: This Privacy Policy forms part of, and is incorporated by reference into, our Terms of Use and Terms of Service for Silence AI. By installing or using Supreme, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.

1.3 Controller Information: Silence AI LLC serves as the data controller for personal data processed through our services. Our business registration location is Media City Free Zone, Al Messaned, Sharjah, UAE.

1.4 Component-Specific Processing: This Privacy Policy applies specifically to the Supreme extension for Visual Studio Code and its related licensing and Database update services. You will only be subject to the processing activities described in this document when you install and use Supreme.

2. Information We Collect

We design Supreme with a local-first, privacy-by-design architecture: source code is analyzed locally on your machine and is not uploaded to our servers.

2.1 Installation and Licensing Information: When you install and activate Supreme, we may collect: License key or subscription identifier. Extension version and build information. Approximate language and locale settings of your environment. Basic product configuration flags related to licensing and updates.

2.2 Service Usage and Technical Data: When Supreme contacts our servers for license verification or Database updates, we may process: Request timestamps. Extension version and platform metadata. License status (active, expired, invalid). Technical logs related to update/download success or failure. This data does not include your source code or project contents.

2.3 Billing and Account Data: If you purchase a paid subscription through our website or a payment processor, we may process: Billing address (where required by payment or tax regulations). Subscription plan, term, and payment status. Partial payment details and transaction identifiers are handled by our payment gateway Stripe, see more in their Services Agreement (https://stripe.com/legal/ssa) and Privacy Policy (https://stripe.com/privacy)

2.4 Support and Communication Data: If you contact us for support or inquiries, we may process: Your name and email address. Content of your message and attachments (if any). Technical context you choose to share (for example, error messages, logs you manually provide).

3. What We Do Not Collect

3.1 Source Code and Project Files: Supreme performs all code analysis locally within your Visual Studio Code environment. Your source code, project files, secrets, and repository contents are not transmitted to, stored by, or processed on our servers.

3.2 IDE Content and Editing Activity: We do not monitor or collect: The text you type into the editor. File contents opened in VSCode. Your terminal output, Git history, or commands.

3.3 Sensitive Categories of Data: We do not intentionally collect sensitive categories of personal data (such as health information, financial records, or government identifiers). If such information is present in your codebase, it remains local on your machine and is never sent to us.

4. How We Use Your Information

4.1 Service Delivery: We use the information described in Section 2 to: Verify your subscription status. Enable or restrict access to updated vulnerability Databases. Deliver Database files and extension updates where applicable. Maintain basic compatibility and performance of licensing and update services.

4.2 Service Operations and Security: We may use technical and usage data to: Monitor service health and detect outages or errors. Protect our services against abuse, fraud, and license key sharing. Troubleshoot technical issues and improve reliability.

4.3 Billing and Administration: Where you have a paid subscription, we use relevant data to: Process subscription fees and manage renewals. Issue invoices or payment confirmations. Respond to billing-related inquiries.

4.4 Analytics and Product Improvement: We may use de-identified, aggregated usage data to: Understand adoption and usage patterns of Supreme. Prioritize features, fixes, and performance improvements. Evaluate the effectiveness of our vulnerability Database updates. We do not use your source code for analytics or model training.

6. Data Storage and Retention

6.1 Retention Periods: We retain personal data only for as long as necessary to fulfill the purposes described in this Policy, including: Licensing and subscription data: stored for the duration of your subscription and a reasonable period thereafter as required for accounting, dispute resolution, or legal compliance. Technical logs related to license verification and Database downloads: retained for a limited period for security, troubleshooting, and audit purposes. Support communications: retained for the duration needed to manage your request and maintain an audit trail of communications.

6.2 Data Deletion: You may request deletion of your personal data where applicable law grants you this right. Subject to legal obligations and legitimate interests (such as preventing fraud or resolving disputes), we will delete or de-identify personal data within a commercially reasonable timeframe.

7. Data Sharing and Third Parties

7.1 Payment Processors: For paid subscriptions, payments are processed via Stripe, Inc. ("Stripe"), a third-party payment gateway. When you provide payment information to subscribe to Supreme, the following data processing occurs:

  • Independent Data Controller: Stripe acts as an independent data controller (not a processor) for payment data. This means Stripe determines how your payment information is processed and is directly responsible for compliance with applicable data protection laws.
  • Payment Data Processed by Stripe: Stripe directly collects and processes your payment card details (card number, expiration date, CVV), billing address, transaction history, payment method information, device information, and IP address for payment processing, fraud prevention, and regulatory compliance purposes.
  • Stripe's Legal Basis: Stripe processes your payment data based on: (a) contract performance to process your subscription payments; (b) legitimate interests in preventing fraud and ensuring payment security; and (c) legal obligations under financial regulations and anti-money laundering laws.
  • Data Retention by Stripe: Stripe retains your payment information in accordance with financial regulatory requirements and their own retention policies, which may extend beyond your subscription period.
  • Stripe's Privacy Policy and Terms: Your payment data is subject to Stripe's Services Agreement (https://stripe.com/legal/ssa) and Stripe's Privacy Policy (https://stripe.com/privacy). We strongly encourage you to review these documents to understand how Stripe processes your personal data.
  • Our Access to Payment Data: We do not have access to your complete payment card details. We receive only limited information from Stripe such as the last four digits of your card, card brand, expiration date, transaction status, and transaction identifiers for billing reconciliation and customer support purposes.
  • International Data Transfers: Stripe may transfer your payment data internationally to countries outside your jurisdiction, including to the United States where Stripe is headquartered. Stripe implements appropriate safeguards for such transfers as described in their Privacy Policy.
  • Cookies and Tracking by Stripe: Stripe uses cookies, web beacons, device fingerprinting, and similar tracking technologies to facilitate payment processing, prevent fraud, authenticate transactions, and comply with financial regulations. See Section 11 (Cookies and Tracking) for more details.

7.2 Right to Change Payment Gateway: We reserve the right to change our payment processor from Stripe to another payment gateway at our sole discretion. If we change our payment gateway, we will:

  • Provide you with at least thirty (30) calendar days' advance written notice via email to the email address associated with your Supreme account;
  • Inform you of the name and identity of the new payment processor;
  • Provide links to the new payment processor's privacy policy and terms of service;
  • Explain any material changes to data processing practices, data retention periods, international data transfers, or cookie usage;
  • Provide instructions for updating your payment information, if necessary.

Your continued maintenance of an active subscription after the thirty (30) day notice period constitutes your consent to the new payment processor's data processing practices. If you do not consent to the new payment processor, you may cancel your subscription before the effective date of the change by emailing info@silenceai.net at least three (3) business days before the effective date.

7.3 Infrastructure and Service Providers: We may use reputable third-party service providers for: Hosting licensing and update servers. Error monitoring and logging. Email delivery and support ticket management. These providers act as processors and are contractually required to protect your data and process it only on our instructions.

7.4 Legal and Compliance: We may disclose information where required to: Comply with applicable laws, regulations, or legal processes. Respond to valid requests from law enforcement or regulatory authorities. Protect our rights, property, or safety, or those of our users or the public. We do not sell your personal data.

8. International Data Transfers

8.1 Global Operations: We operate data centers worldwide. When personal data is transferred across borders, we: Rely on legally permitted transfer mechanisms. Implement appropriate safeguards as required by law. Use TLS encryption for all data transfers. Ensure compliance with applicable data protection regulations.

8.2 User Responsibilities: You remain responsible for any local authorizations or restrictions required for data transfers you initiate through our services.

9. Security Measures

We implement technical and organizational measures designed to protect personal data against unauthorized access, alteration, disclosure, or destruction, including:

  • Encryption in transit between your extension and our servers where applicable
  • Access controls and authentication on administrative systems
  • Audit logging of administrative access and key actions
  • Restricting production access to authorized personnel only

You remain responsible for securing your own development environment, device, and source code.

10. User Responsibilities

You are solely responsible for:

  • Ensuring you have the necessary rights to analyze any code with Supreme
  • Avoiding inclusion of third-party personal data or confidential information in communications you send to our support channels (for example, in logs or screenshots)
  • Maintaining the security of your devices, IDE environment, and license key
  • Complying with applicable laws and third-party obligations when using Supreme

11. Cookies and Tracking

11.1 Supreme Extension: The Supreme extension itself does not use browser cookies or similar tracking technologies within the Visual Studio Code environment.

11.2 Payment Processor Cookies: When you purchase a subscription or provide payment information, Stripe (our payment processor) uses cookies, web beacons, device fingerprinting, local storage, and similar tracking technologies. These technologies are used for:

  • Payment Processing: To facilitate secure payment transactions and authentication;
  • Fraud Prevention and Security: To detect and prevent fraudulent transactions, identify suspicious activity, and protect against unauthorized access;
  • Session Management: To maintain your payment session and ensure continuity during the checkout process;
  • Regulatory Compliance: To comply with financial regulations, anti-money laundering laws (AML), and Know Your Customer (KYC) requirements;
  • Analytics and Performance: To analyze payment system performance and improve the payment experience;
  • Device Recognition: To recognize your device for security purposes and to streamline future payment processes.

11.3 Types of Cookies Used by Stripe: Stripe may use the following types of cookies and similar technologies:

  • Strictly Necessary Cookies: Required for payment processing and cannot be disabled without preventing payment functionality;
  • Security Cookies: Used to authenticate users, prevent fraud, and protect payment data;
  • Functional Cookies: Used to remember your payment preferences and provide enhanced payment features;
  • Performance/Analytics Cookies: Used by Stripe to analyze payment system performance and reliability.

11.4 Managing Payment Processor Cookies: Because Stripe's cookies are essential for payment processing, you cannot opt out of these cookies without disabling payment functionality entirely. However, you can:

  • Review Stripe's cookie practices in detail by visiting their Privacy Policy at https://stripe.com/privacy;
  • Contact Stripe directly regarding their cookie usage and data processing practices;
  • Choose not to purchase a subscription if you do not consent to Stripe's cookie usage;
  • Cancel your subscription if you no longer wish to be subject to Stripe's data processing.

11.5 Third-Party Payment Processor Changes: If we change our payment processor in the future, the new payment processor may use different cookies and tracking technologies. We will provide thirty (30) days' advance notice of any payment processor change, including information about the new processor's cookie usage. See Section 7.2 for details on payment gateway changes.

11.6 Website Cookies: If you visit our website (for example, to manage subscriptions or view documentation), additional cookie usage on the website will be governed by the separate cookie notice or website privacy policy available there.

12. Data Breach Notification

In the unlikely event of a personal data breach affecting information we control, we will:

  • Assess the impact and scope of the incident
  • Notify affected users where required by law
  • Notify relevant supervisory authorities where required
  • Take reasonable steps to mitigate and prevent similar incidents in future

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through: Notifications in the extension or on our website, and/or. Email notice to the address associated with your subscription, where available. Your continued use of Supreme after changes become effective constitutes acceptance of the updated Privacy Policy. If you do not agree with updates, you should uninstall the extension and stop using Supreme.

14. Contact Information

For questions about this Privacy Policy, data processing, or to exercise your rights, contact us at:

Silence AI

Email: info@silenceai.net

Website: https://silence.codes/

15. Governing Law

This Privacy Policy is governed by the laws applicable to the jurisdiction where Silence AI LLC's primary operations are located, without regard to conflict of law principles. Where applicable law grants you mandatory rights or protections, those rights remain unaffected.

Last Updated: January 2026