🛡️ Privacy Policy - Prompt Buddy
🔐 Your privacy is our top priority.
Prompt Buddy collects ZERO personal information and operates entirely on your device.
Last Updated: January 6, 2025
Extension Version: 1.0.2
📋 Overview
Prompt Buddy is a Chrome extension that enhances your ChatGPT experience by optimizing prompts using AI. This privacy policy explains our commitment to protecting your privacy and data.
🚫 What We DON'T Collect
- ❌ Personal information (names, emails, addresses)
- ❌ ChatGPT conversations or prompts
- ❌ Browsing history or website data
- ❌ Usage analytics or tracking data
- ❌ Device information beyond basic user agent
- ❌ Location data
- ❌ Cookies or persistent identifiers
💾 What We Store Locally (Your Device Only)
🔒 All data stays on YOUR device - never transmitted to our servers
- ✅ API Configuration: Your OpenAI API endpoint and key (encrypted)
- ✅ Extension Settings: Toggle state (on/off)
- ✅ User Feedback: Optional feedback you submit (encrypted, stored locally)
- ✅ Cache: Temporary prompt optimization results (5-minute expiry)
🔐 Data Security
Military-Grade Encryption
- 🛡️ API Credentials: Protected with AES-256-GCM encryption (military standard)
- 🔑 Key Derivation: PBKDF2 with 100,000 iterations and unique salts
- 🎲 Secure Random IVs: Each encryption uses cryptographically secure random initialization vectors
- 💬 User Feedback: All feedback encrypted before storage using the same standards
- 🚫 Zero Plain Text: Sensitive data is never stored in readable format
Local-Only Storage
- 📱 All data stored exclusively in Chrome's sync storage (encrypted by Google)
- 🚫 No external servers, databases, or cloud storage used by Prompt Buddy
- 🔗 No data transmission to third parties (except your chosen OpenAI API)
Security Architecture
- 🛡️ Content Security Policy: Prevents code injection attacks
- ✅ Input Validation: All user inputs are sanitized and validated
- 🧠 Memory Protection: Sensitive data cleared from memory after use
🔗 Third-Party Services
What Prompt Buddy Controls (Zero Data Collection)
- ✅ Military-grade encryption of your settings
- ✅ Local-only data storage
- ✅ Secure API communication
What We Cannot Control
⚠️ These services have their own privacy policies:
- 🔗 Google Chrome: Browser sync and extension storage
- 🏪 Chrome Web Store: Extension installation and updates
- 🤖 OpenAI API: Your API calls for prompt optimization
- 💬 ChatGPT Platform: The website where you use the extension
Recommended Actions
📧 Feedback System
When you submit feedback through the extension:
- 💬 Feedback is encrypted and stored locally first
- 📨 Sent to our email via secure third-party service (Formspree/EmailJS)
- 📝 Includes: your message, extension version, timestamp, and basic browser info
- 🚫 No personal identification or tracking
- 🗑️ You can clear local feedback storage anytime
🏛️ Legal Compliance
- ✅ GDPR Compliant: No personal data processing
- ✅ CCPA Compliant: No personal information sale
- ✅ Chrome Web Store Compliant: Meets all privacy requirements
🔄 Changes to This Policy
We may update this privacy policy to reflect changes in our practices or legal requirements. Any changes will be posted on this page with an updated "Last Updated" date.
📞 Contact Us
If you have questions about this privacy policy or our privacy practices: