ProductHow it worksSafetyPricing
Log in / Connect
Privacy

Privacy Policy

Last updated June 3, 2026

Meridian is a self-hosted, human-in-the-loop LinkedIn lead-generation platform — a browser extension plus an operator console you run on your own server. This policy explains what the extension accesses and where your data goes. The short version: your data lives on your own infrastructure, and we (the developer) never receive, store, or have access to it.

Self-hosted by design

Meridian connects only to the Meridian server you deploy and configure. Your LinkedIn data, your leads, and your messages are synced to that server — under your control, on your hosting. The developer operates no central service that collects your data and has no access to your instance.

What the extension accesses, and why

  • Your LinkedIn session cookies (li_at, JSESSIONID): read in your browser so the extension can act as the already-signed-in you. We never ask for, see, or store your LinkedIn password — cookies only, used to authenticate your own requests from your own machine.
  • Your LinkedIn data — your connections, conversations, and profile/lead details — read to build the CRM inside your own Meridian instance.
  • Local extension state (pairing token, your server URL, sync cursors, UI preferences) stored in the browser via chrome.storage.local so you don't have to re-pair on every restart.

Where your data goes

Synced data is sent only to your own self-hosted Meridian server. Secrets at rest (session cookies, tokens) are stored encrypted (AES-256-GCM). We do not sell, rent, or transfer your data to third parties; we do not use it for advertising; and we do not use it to determine creditworthiness or for lending. Data is never used for any purpose beyond operating your own account on your behalf.

Account safety

Every outbound action (connection request, message, like) passes through an approval queue and is rate-limited and jittered. The extension never attempts to bypass a LinkedIn CAPTCHA, checkpoint, or verification — if one appears, it pauses and notifies you.

Permissions

The extension requests only what its single purpose needs:

  • cookies — read your LinkedIn session so it can act as you.
  • storage — keep pairing/config locally across restarts.
  • alarms — schedule paced, jittered background sync + heartbeat.
  • tabs — open your Meridian dashboard tab.
  • Host access to LinkedIn and to your own Meridian server only.

Third-party services

The extension talks to LinkedIn (the platform you operate on) and to your own Meridian server. Any AI, enrichment, or email providers (e.g. Azure OpenAI, Perplexity, Tavily, Gmail) are optional, configured by you on your own instance, and governed by their own privacy policies. We do not add any third-party trackers or analytics to the extension.

Your choices

You stay in control: uninstall the extension at any time to stop all access, and manage or delete your data directly on your own server. Because Meridian is self-hosted, your data lives with you.

Changes & contact

We may update this policy as the product evolves; the “last updated” date above will change accordingly. Questions about this policy or your data? viditsharma818@gmail.com.

← Back to Meridian