Welcome to ScriptGenie AI ("we", "our", or "extension"). ScriptGenie AI is a Chrome browser extension designed to enable users to generate Tampermonkey-compatible browser scripts through natural language interactions with large language models. We highly value your privacy and are committed to protecting your personal information. This Privacy Policy aims to explain how we collect, use, store, and protect your information.
Information Collection and Use
Information We Collect
User-Provided Information:
Large language model API keys you configure (such as DeepSeek, Claude, OpenAI, Silicon Flow, OpenRouter, etc.)
Script content and related configuration information you create
Your conversation content and chat history with AI assistants
Script URL matching patterns and execution settings
Automatically Collected Information:
Current browsing page URL and title (used only for script matching and execution)
Extension usage data (such as feature usage frequency, error reports)
Script execution status and performance data
Purpose of Information Use
The information we collect is used only for the following purposes:
Providing, maintaining, and improving our extension functionality
Executing browser scripts you create
Conducting necessary API communications with the AI model providers you choose
Resolving technical issues and enhancing user experience
Ensuring scripts execute on the correct web pages
Data Storage
Local Storage
All user data is stored on your local device and managed using the Chrome.storage API:
API keys and model configuration information are stored locally and are not uploaded to our servers
Scripts and conversation history you create are saved in local storage
Script snapshots, version history, and personalized settings are saved only on your device
Tab script matching information is temporarily stored locally
Third-Party Services
When you use the extension to interact with AI models, your prompts and conversation content will be sent to the third-party AI service providers you configure (such as OpenAI, Claude, etc.). These transmissions are subject to the privacy policies of the respective service providers. We recommend that you review these service providers' privacy policies to understand how they handle your data.
Important Note: We do not collect, store, or transmit your API keys to our servers. All API keys are stored and used only on your local device.
Data Security
We highly value your data security and take the following comprehensive measures to protect your information:
Sensitive Information Protection: Sensitive information such as API keys are masked when displayed (showing only the last 4 digits), ensuring that complete keys are not exposed even during screen sharing
Minimal Permissions Principle: We strictly adhere to the principle of minimal permissions, requesting only permissions necessary for the extension's functionality and not requesting additional permissions unrelated to functionality
Local Data Storage: All user data is stored only on your local device; we do not transfer or store your personal data on our servers
Secure Storage Mechanism: We use Chrome's secure storage API to protect local data and prevent unauthorized access
Sandbox Execution Environment: All scripts are executed in a secure sandbox environment provided by Chrome to prevent malicious code execution
Data Encryption: Sensitive information stored locally is encrypted, adding an extra layer of security
Regular Security Reviews: We regularly review the extension code to ensure there are no security vulnerabilities
Permissions
This extension requires the following permissions, strictly adhering to the principle of minimal permissions, requesting only necessary permissions to provide core functionality:
storage: This permission is used to securely store your scripts, API configurations, and conversation history on your local device. We do not upload this data to any servers; all data is saved only on your device.
activeTab: This permission allows the extension to access information about the current tab only when you actively interact with the extension. We use this permission to obtain the URL and title of the current webpage to determine whether to execute your created scripts. The extension does not continuously monitor your browsing activity in the background.
scripting: This permission allows the extension to execute scripts you create on web pages. We only execute scripts on websites you explicitly authorize, and the script content is completely under your control.
tabs: This permission is used to manage tabs and display script execution status. We use this permission to ensure scripts execute on the correct tabs and to provide visual feedback on script execution status.
notifications: This permission is used to send you notifications when scripts complete execution or when errors occur. All notifications are generated locally and do not send any data to external servers.
contextMenus: This permission is used to provide right-click menu functionality, allowing you to quickly access extension features on specific web pages. We do not use this permission to collect any personal data.
host_permissions (<all_urls>): This permission allows the extension to execute scripts on websites you visit. We only execute scripts on websites you explicitly configure, and all script execution is under your complete control. You can modify or delete any script's URL matching patterns at any time.
User Rights and Control
As a user, you have complete control over your data, including the following specific rights:
Right to Data Access: You can access all your data stored in the extension at any time through the extension's settings page, including scripts, configurations, and conversation history
Right to Data Deletion: You can easily delete any scripts, snapshots, and conversation history you create through the extension interface; deletion operations are immediate and permanent
Right to Data Modification: You can modify or update your API keys, script content, and other configuration information at any time; all changes take effect immediately
Right to Extension Uninstallation: You can uninstall the extension at any time, which will automatically remove all locally stored data from your device without leaving any traces
Right to Feature Control: You can enable or disable any extension functionality at any time through the extension settings, precisely controlling the extension's behavior
Right to Data Export: You can export your created scripts and configurations for backup or migration to other devices
Right to Transparency: We are committed to transparency in data processing; you can understand how the extension handles your data at any time
Cookie Usage
The ScriptGenie extension itself does not use cookies. However, when you visit websites that use cookies, the scripts you create may interact with these cookies. These interactions are subject to the cookie policies of the respective websites.
Children's Privacy
The ScriptGenie extension is not directed at children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will take steps to delete this information.
Data Retention
Your data will be retained on your device until you actively delete it or uninstall the extension
When you uninstall the extension, all locally stored data will be automatically deleted
We do not retain any of your data on our servers
Privacy Policy Updates
We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. When we make significant changes to the Privacy Policy, we will:
Display a prominent notice in the extension informing you that the policy has been updated
Provide a comparison of old and new versions on the extension's settings page
Give you sufficient time to review the changes
Ensure the updated policy complies with the latest legal and regulatory requirements
The updated Privacy Policy will take effect immediately upon posting. We encourage you to review this Privacy Policy periodically to understand how we protect your information. Continued use of our extension will be considered acceptance of the updated terms.
Contact Us
If you have any questions, comments, or suggestions regarding this Privacy Policy, or if you wish to exercise your data rights, please contact us through the following methods:
We commit to responding to your request within 15 business days of receiving it.
Compliance Statement
The ScriptGenie extension complies with all applicable data protection laws and regulations, including but not limited to:
General Data Protection Regulation (GDPR)
California Consumer Privacy Act (CCPA)
Chrome Web Store Developer Program Policies
We are dedicated to protecting your privacy rights and ensuring our privacy practices meet the highest standards.
Consent
By installing and using the ScriptGenie extension, you acknowledge that you have read and agree to the practices and policies described in this Privacy Policy. If you do not agree to any part of this Privacy Policy, please do not use this extension.