Account setup & sign-in
You can use the free Individual tier of the Sonomos browser extension without ever signing in. Signing in is required only for the features that depend on your account — compliance reports, settings sync, Teams plans, and Teams admin analytics.
Do I need an account?
| You want to… | Account required? |
|---|---|
| Use Cloak, Send Guard, and the risk widget | No |
| See detections in the extension popup | No |
| Run Canary on Claude Code | No |
| Download or email compliance reports | Yes (Professional or Teams) |
| Sync settings across browser profiles | Yes |
| Join or administer a Teams plan | Yes |
| Manage billing or invoices | Yes |
Create an account
-
Visit my.sonomos.ai in any modern browser.
-
Choose a sign-in method. Sonomos uses social sign-in to avoid storing passwords:
- Sign in with Google
- Sign in with Microsoft
You’ll be redirected to the provider’s standard sign-in flow and returned to Sonomos once authenticated.
-
Confirm your email. If your provider account uses a different address than the one you want associated with Sonomos, you can update it from Settings → Profile after sign-in.
-
Optional — pick a plan. New accounts start on the free Individual tier. You can stay there indefinitely or start a 30-day Professional trial without entering payment details. See Plans & pricing.
Sign in to the extension
After creating an account at my.sonomos.ai:
- Click the Sonomos toolbar icon to open the popup.
- Click Sign in.
- Choose the same provider you used at
my.sonomos.ai. - The extension links to your account; you should see your plan reflected in the popup.
If you signed up at my.sonomos.ai first, signing into the extension simply links the existing account. If you sign into the extension first, an account is created using the provider you choose, and you can later sign into my.sonomos.ai to manage billing and view reports.
Sync across devices
Sonomos syncs the following across browser profiles signed into the same account:
- Cloak on / off state per supported platform.
- Send Guard mode (Banner only, Banner + Modal, Modal always, or Off).
- Risk widget position preference.
- Detection settings like opt-in / opt-out of low-severity detection.
Detection history and per-page event data are not synced — they stay on the device where they were generated. This is deliberate: minimizing what crosses the network keeps Sonomos consistent with its local-first design.
Use multiple browsers
You can sign into the same Sonomos account from multiple Chromium browsers (Chrome, Edge, Brave, Arc, Vivaldi, Opera) on the same or different machines. Each install reports separately for compliance purposes, but settings sync via your account.
For Teams admins, each member’s installs roll up under their account in the admin dashboard.
Switch sign-in provider
To switch from Google to Microsoft or vice versa:
- Sign in to my.sonomos.ai with your current provider.
- Go to Settings → Account → Sign-in methods.
- Add the new provider and confirm.
- Optionally remove the old provider once the new one is verified.
If you’ve lost access to both providers, contact info@sonomos.ai for recovery — we’ll verify identity before making any account changes.
Change your email or display name
From my.sonomos.ai:
- Settings → Profile → Display name — changes how you appear in Teams admin views.
- Settings → Profile → Email — changes the address compliance reports are emailed to and where account notices go. Confirmation email is required.
Delete your account
Account deletion is permanent and includes settings sync data, detection history retained on Sonomos servers (Teams aggregate counts only), and your subscription record.
- Cancel any active subscription first (Settings → Billing → Cancel subscription) to avoid further charges.
- Go to Settings → Account → Delete account.
- Confirm with the prompt. The deletion request is processed within 30 days.
Local data — settings, detection history on your device, and ~/.sonomos/ for Canary — is not affected by account deletion. To wipe local data, uninstall the extension and / or rm -rf ~/.sonomos for Canary.
What about Canary?
Canary does not require an account at all. It’s open source, fully local, and stores findings in ~/.sonomos/ on your machine. There is no Sonomos backend involved.
Security
- No passwords stored. Sign-in is provider-mediated (Google / Microsoft). If you lose access at the provider, account recovery requires identity verification through info@sonomos.ai.
- Two-factor authentication. Enable 2FA at your identity provider. Sonomos respects whatever auth your provider enforces.
- Session management — sign out from a single device via the extension popup (Sign out), or revoke all sessions at my.sonomos.ai → Settings → Security → Sign out everywhere.