Privacy Policy
Effective 22 June 2026
This policy explains what personal data Markist collects, why, and the choices and rights you have over it.
Who we are
Markist is a bookmark manager operated by the operator of Markist(the “data controller”). For any privacy question or request, contact us at privacy@markist.xyz.
Data we collect
We only collect what we need to run the service:
- Account data: your email address, your chosen username, the date your email was verified, and your account creation date.
- Your bookmarks: the URLs you save and any titles, notes, AI-generated summaries, tags, vector embeddings, and read-later status associated with them.
- Technical data: a single essential session cookie to keep you signed in, and standard server logs (such as IP address and request metadata) kept briefly for security and reliability.
We do not use analytics, advertising, or tracking cookies, and we do not sell your data.
How we use your data and our legal basis
We process your account data and bookmarks to provide the service you asked for — this is the lawful basis of performance of a contract. We process limited technical data on the basis of our legitimate interest in keeping the service secure and working. We do not use your data for any other purpose without telling you first.
Content sent to AI providers
When you save a bookmark, we fetch the page and send its text content to third-party AI services so we can generate a title, summary, tags, and a search embedding. Specifically:
- Jina AI — fetches and cleans the page text.
- Google (Gemini API) — generates summaries, tags, and embeddings.
- OpenRouter — a fallback summary provider used only when Google is unavailable.
Please avoid saving pages containing sensitive personal information you would not want processed by these providers.
Sub-processors
We rely on the following providers to operate Markist. Each processes data only on our behalf:
- Supabase — database and storage of your account and bookmarks.
- Vercel — application hosting and server logs.
- Resend — sending verification-code emails.
- Upstash — background job queue for processing bookmarks.
- Google, OpenRouter, Jina AI — the AI content processing described above.
Cookies
We use a single strictly-necessary cookie to keep you signed in. It is essential to the service and is exempt from consent requirements. We do not set any analytics or advertising cookies, so there is no cookie banner to manage.
How long we keep your data
We keep your account data and bookmarks for as long as your account exists. When you delete your account, your data is removed from our database immediately. Email verification codes expire within 15 minutes. Server logs held by our hosting provider are retained only for a short period.
Your rights
You have the right to access, correct, export, or delete your personal data, and to object to or restrict its processing. You can:
- Delete your account and all associated data yourself from your account page.
- Email privacy@markist.xyz to request a copy of your data or exercise any other right. We aim to respond within 30 days.
If you are in the EU/UK, you also have the right to lodge a complaint with your local data protection authority.
International transfers
Some of our providers are based in the United States, so your data may be processed there. Where this happens, transfers are covered by the providers’ standard contractual safeguards.
Children
Markist is not intended for children. You must be at least 16 years old to use the service.
Changes to this policy
We may update this policy from time to time. When we make material changes, we will update the effective date at the top of this page.
Contact
Questions about this policy or your data? Email privacy@markist.xyz. See also our Terms of Service.