Privacy Policy for Email Assistant
Last Updated: January 2025
Overview
Email Assistant is a Chrome extension that helps users revise and improve their emails using AI providers. We are committed to protecting your privacy and being transparent about our data practices.
Data Collection
Email Assistant does NOT collect, store, or transmit any personal data to our servers.
We do not have:
- Backend servers
- Databases
- Analytics services
- Tracking systems
- User accounts
What Data is Stored Locally
The following data is stored locally on your device using Chrome's storage API:
Stored in Chrome Local Storage
- API Keys: Your AI provider API keys (OpenAI, Anthropic, Google, DeepSeek, Azure)
- Settings: Provider selection, model preferences, system prompt settings
- UI Preferences: Theme (light/dark), panel state (open/closed)
Stored in Memory (Session Only)
- Response History: Last 10 AI responses (cleared when side panel closes)
- Current Email Text: Text you're working on (not persisted)
How Your Data is Used
API Keys
- Stored locally in encrypted Chrome storage
- Used only to authenticate with your selected AI provider
- Never transmitted to us or any third party except the AI provider you select
- Can be deleted at any time through extension settings or by uninstalling
Email Content
- Your email text is sent directly to the AI provider you select
- We never see, store, or have access to your email content
- Communication happens directly between your browser and the AI provider
- All connections use HTTPS encryption
Third-Party Services
Email Assistant connects directly to the following AI providers based on your selection:
Supported AI Providers
1. OpenAI (api.openai.com)
2. Anthropic (api.anthropic.com)
3. Google Gemini (generativelanguage.googleapis.com)
4. DeepSeek (api.deepseek.com)
5. Microsoft Azure OpenAI (your custom endpoint)
Important: When you use Email Assistant, your email text is sent to the AI provider you select. Please review their privacy policies to understand how they handle your data.
Chrome Permissions Explained
Email Assistant requires the following Chrome permissions:
storage
Purpose: To save your API keys and settings locally on your device
Data Access: Chrome local storage only (stays on your device)
sidePanel
Purpose: To display the extension's user interface in Chrome's side panel
Data Access: None
scripting
Purpose: To grab selected text when you click "Use Selection"
Data Access: Selected text only, when you explicitly click the button
activeTab
Purpose: To access the current page's content when grabbing text
Data Access: Page content only when you click "Use Selection"
clipboardRead
Purpose: To paste text when you click "Paste from Clipboard"
Data Access: Clipboard content only when you explicitly click the button
Host Permissions
The extension requires permission to access the following domains to communicate with AI providers:
https://api.openai.com/*https://api.anthropic.com/*https://generativelanguage.googleapis.com/*https://api.deepseek.com/*https://*.openai.azure.com/*
These permissions are used ONLY to send API requests to your chosen AI provider.
Data Security
Encryption
- All API communications use HTTPS/TLS encryption
- API keys are stored in Chrome's secure local storage
- No data is transmitted over unencrypted connections
Access Control
- Only you have access to your data (it's on your device)
- Extension cannot access other extensions' data
- Extension follows Chrome's security sandbox model
Data Retention
- Local data persists until you clear browser data or uninstall
- Session data (response history) is cleared when you close the side panel
- No data is retained on our servers (we don't have servers)
Your Rights & Control
You have complete control over your data:
Right to Access
- All your data is stored locally in Chrome
- View stored data: Chrome DevTools → Application → Storage → Local Storage
Right to Delete
- Delete API Keys: Clear them in extension settings
- Delete All Data: Uninstall the extension or clear Chrome local storage
- Export Settings: Use the built-in export feature to backup
Right to Port Data
- Export settings as JSON file
- Import settings to another browser/device
Children's Privacy
Email Assistant is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13.
International Data Transfers
- Your data stays on your device (no transfers)
- When you use an AI provider, data is sent directly to their servers
- AI providers may transfer data internationally - see their privacy policies
Changes to This Privacy Policy
We may update this privacy policy from time to time. Changes will be:
- Posted to this document with updated "Last Updated" date
- Noted in extension update changelog (for major changes)
- Not retroactive (we don't have historical data to apply changes to)
How to stay informed:
- Check this document periodically
- Review update notes when updating the extension
California Privacy Rights (CCPA)
If you are a California resident, you have the right to:
- Know what personal information is collected: None (all data is local)
- Delete personal information: Uninstall the extension
- Opt-out of sale of personal information: Not applicable (we don't sell data)
European Privacy Rights (GDPR)
If you are in the European Economic Area, you have the right to:
- Access your data: All stored locally on your device
- Rectify your data: Edit in extension settings
- Erase your data: Uninstall extension or clear settings
- Data portability: Export settings as JSON
- Object to processing: Don't use the extension or don't provide API keys
Legal basis for processing: Consent (you choose to install and use the extension)
Cookies
Email Assistant does not use cookies. All data is stored via Chrome's storage API.
Analytics & Tracking
Email Assistant does NOT use:
- Google Analytics
- Telemetry
- Usage tracking
- Error reporting services
- Advertising networks
We do not track how you use the extension.
Contact Information
For privacy-related questions or concerns, please contact us through the Chrome Web Store support page.
Compliance
Email Assistant is designed to comply with:
- GDPR (European Union)
- CCPA (California)
- Chrome Web Store Privacy Policy Requirements
- General privacy best practices
Disclaimer
IMPORTANT: Email Assistant is a client-side tool that facilitates communication with AI providers. We:
- Do not guarantee the privacy practices of third-party AI providers
- Are not responsible for data breaches at AI provider companies
- Do not control how AI providers use or store your data
- Recommend reviewing each AI provider's privacy policy before use
Summary (TL;DR)
- ✅ We DON'T collect your data - Everything stays on your device
- ✅ We DON'T have servers - No backend infrastructure
- ✅ We DON'T see your emails - Direct connection to AI providers
- ✅ We DON'T track you - No analytics or telemetry
- ✅ You OWN your data - Stored locally, delete anytime
Your API keys and email content are YOUR business, not ours.
This privacy policy was last updated on January 2025 and is effective immediately.