Sanctum is a user-configured website blocking and focus extension. Core blocking runs locally in the browser. The extension does not sell personal data and does not upload full browsing history or full page text for core blocking.
Sanctum stores blocking rules, enabled categories, custom keywords, focus sessions, temporary access windows, allowlists, settings, and blocking statistics in Chrome storage. New protection passwords are stored as salted PBKDF2 hashes, not as plaintext.
Core blocking does not read page body text. It is based on URLs, domains, local rules, and user-enabled category domain lists.
Sanctum includes an optional enhanced local page scan that is off by default. If the user enables it, Sanctum dynamically registers a content script for http and https pages. The script checks page URL, title, meta description, meta keywords, Open Graph title/description, headings, and a limited amount of visible text on the device. It skips form fields, inputs, textareas, selects, contenteditable areas, iframes, screenshots, and payment or password fields. Page content is not uploaded and full page text is not stored. When a high-confidence adult page is detected, Sanctum stores only the hostname, category, timestamp, confidence score, and local counters so future visits can be blocked earlier.
The current public v1 build does not require sign-in and does not include paid features. If cloud sync, account login, or paid features are introduced later, they will be opt-in and disclosed before use.
Future paid features may include plan limits and entitlement checks, such as allowing paid users to enable multiple blocking items or expanded rule sets. To provide those services, Sanctum may process account identifiers, email address, subscription status, plan tier, purchase or renewal state, and payment-provider transaction references. Card numbers and full payment details should be handled by the payment provider, not stored by the extension. Blocking rules, browsing history, full page text, and local scan content will not be uploaded for payment verification unless the user separately opts into a clearly disclosed cloud sync feature. Google Drive, Gmail, Calendar, contacts, and similar unrelated scopes are not requested for paid access.
The current public v1 build does not share blocking rules, browsing history, full page text, or local scan content with external services.
The popup includes a JSON export for rules and activity data. Sensitive secrets such as password hashes and authentication tokens are redacted from exports. Users can clear rules in the popup or remove the extension from Chrome to delete extension storage from the browser profile.
(©2026 Sanctum. All rights reserved. )
Sanctum 是一款由用户自行配置的网站拦截与专注扩展。核心拦截逻辑在浏览器本地运行。本扩展不会出售个人数据,也不会为了核心拦截上传完整浏览历史或完整页面正文。
Sanctum 会在 Chrome 存储中保存拦截规则、启用的分类、自定义关键词、专注会话、临时访问窗口、白名单、设置以及拦截统计。新的保护密码会以加盐 PBKDF2 哈希形式保存,不会以明文保存。
核心拦截不会读取页面正文。它基于 URL、域名、本地规则以及用户启用的分类域名列表进行判断。