Skip to Content


Privacy Policy

Privacy Policy

This extension is designed to help users interact with their Gmail inbox directly within the browser popup. We take your privacy seriously and only request the minimum information needed for the extension to function properly.

Information We Collect

We only collect and temporarily store the following data, locally on your device, through Chrome’s extension storage APIs:

  • Your Google account email address (for account identification and label association)

  • OAuth access and refresh tokens (to access your Gmail account securely)

  • Email metadata (e.g., subject, sender, date)

  • Email content (for inbox display purposes only)

  • Your sent or draft messages (retained only during the sending process)

  • Theme and UI preferences (e.g., dark/light mode)

No personal data is stored or transmitted to any external servers. All actions occur locally between your browser and Google’s Gmail API.

How We Use Your Data

We use your data solely to provide the functionality of the extension:

  • Display your inbox and email content inside the extension

  • Enable you to send, reply to, and delete emails

  • Maintain your session using the OAuth refresh token (avoids re-authentication)

  • Improve usability (e.g., theme color preference, local caching for performance)

We do not use your data for advertising, marketing, or analytics purposes.

Data Retention and Deletion

All user data (OAuth tokens, preferences, cached content) is stored locally in your browser using secure Chrome extension APIs.

  • When you uninstall the extension, all stored data is automatically deleted.

  • You may also manually clear stored data at any time via your browser settings.

We do not store, process, or retain any data on our servers.

Data Sharing and Disclosure

We do not share, sell, or transfer any user data to third parties.

Your Gmail data remains strictly between your browser and Google's servers.

Permissions We Request

The extension requests the following Chrome and Google OAuth permissions:

  • identity and identity.email – to authenticate your account

  • https://www.googleapis.com/auth/gmail.readonly – to read your inbox

  • https://www.googleapis.com/auth/gmail.modify – to archive or delete messages

  • https://www.googleapis.com/auth/gmail.send – to send or reply to messages

These scopes are used only for the functionality described above.

Data Security

We implement several technical and procedural safeguards to protect your data:

  • All data is stored only on your device – no external transmission occurs

  • Authentication is handled via Google’s OAuth 2.0 protocol

  • Tokens are stored using Chrome’s secure, encrypted extension storage APIs

  • No tracking, analytics, or third-party scripts are used in the extension

  • Best practices such as:

    • Content Security Policy (CSP) enforcement

    • Minimal permission requests

    • Secure code handling of email content and tokens

These measures help ensure that your data remains secure and confidential at all times.

Your Rights and Data Control

As no data is stored on our servers, you retain full control of your data:

  • You can revoke the extension’s access to your Google account at any time via:

    Google Account Permissions

  • You can delete all stored data by uninstalling the extension or clearing Chrome extension storage.

Updates to This Policy

We may update this privacy policy to reflect changes in the extension or to comply with legal or policy requirements. Any updates will be reflected on this page and inside the extension interface if necessary.

Contact

If you have any questions or concerns about this privacy policy, please contact us at:

Contact@flyver.online

🔗 Extension URL: Flyver on Chrome Web Store