Privacy Policy

Assistant for ChatGPT - Chrome Extension

1. Introduction

This Privacy Policy describes how the ChatGPT Assistant Chrome Extension ("we," "our," or "the Extension") collects, uses, and protects your information when you use our Chrome extension. We are committed to protecting your privacy and being transparent about our data practices.

2. Information We Collect

2.1 Personal Information

2.2 Automatically Collected Information

• Browser storage data (for maintaining your session and preferences)
• Extension usage patterns (locally stored)
• Error logs and debugging information (when issues occur)

3. How We Use Your Information

3.1 Primary Uses

• Authentication: To verify your identity and maintain secure access to your account
• Chat Functionality: To store and retrieve your conversation history
• Personalization: To maintain your preferences and settings across sessions
• OpenAI Integration: To facilitate communication with ChatGPT using your API key

3.2 Service Improvement

• To debug and resolve technical issues
• To improve the extension's functionality and user experience
• To ensure the security and integrity of our services

4. Data Storage and Security

4.1 Local Storage

• User preferences and settings are stored locally in your browser
• Session tokens are stored locally for authentication
• OpenAI API keys are stored locally in your browser's secure storage

4.2 Server Storage

• Chat messages and conversation history are stored on our secure servers
• User account information is stored with encrypted passwords
• All data is protected with industry-standard security measures

4.3 Security Measures

• Password hashing using bcrypt
• JWT token-based authentication with expiration
• CORS protection and input validation
• SQL injection prevention
• Secure HTTPS connections for all API communications

5. Third-Party Services

We only share your chat messages with OpenAI when:

• You explicitly send a message to ChatGPT
• You have provided your own OpenAI API key
• The communication is necessary to provide the chatbot functionality

6. Data Retention

• Chat Messages: Stored indefinitely until you delete them or your account
• Account Information: Retained while your account is active
• Session Tokens: Expire after 24 hours
• Local Browser Data: Removed when you uninstall the extension or clear browser data

7. Your Rights and Controls

7.1 Data Control

• Delete Chats: You can delete individual chats and messages at any time
• Account Deletion: Contact us to request complete account deletion
• Data Export: Request a copy of your stored data
• Settings Control: Modify your preferences and settings anytime

7.2 Local Data

• Clear browser storage to remove locally stored preferences
• Uninstall the extension to remove all local data
• Log out to clear session tokens

8. Children's Privacy

Our extension is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us to have it removed.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify users of any material changes by:

• Updating the "Last Updated" date at the top of this policy
• Providing notice through the extension interface
• Posting updates on our website or repository

10. Data Processing Legal Basis

We process your personal data based on:

• Consent: When you provide your OpenAI API key and agree to use ChatGPT services
• Legitimate Interest: To provide and improve our extension services
• Contractual Necessity: To fulfill our service obligations to you

11. International Data Transfers

Your data may be processed in countries other than your country of residence. When we transfer data internationally, we ensure appropriate safeguards are in place to protect your information.

12. Contact Information