GlassTab — Privacy Policy

Overview

GlassTab ("the Extension") is a Chrome browser extension that replaces your new tab page with a customizable dashboard. This Privacy Policy describes how the Extension accesses, uses, stores, shares, and protects user data, including data obtained through Google APIs.

GlassTab's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

1. Data Accessed

GlassTab accesses the following types of data:

Google User Data

If the user chooses to connect their Google account, GlassTab requests read-only access to Google Calendar data using the calendar.readonly scope. Specifically, the Extension accesses:

• Event titles (summary)
• Event start and end dates/times
• Whether an event is an all-day event

No other Google user data is accessed. GlassTab does not access Gmail, Google Drive, Google Contacts, or any other Google services.

Non-Google Data

• Weather data: Current temperature and weather conditions fetched from the Open-Meteo API using user-specified city coordinates.
• Daily quotes: Inspirational quotes fetched from a publicly shared Google Sheets document. No user data is sent in this request.
• Website favicons: Icons fetched from Google's favicon service for shortcut bookmarks the user adds.

User Preferences (Local Only)

• Dark/light mode preference
• Weather city name and coordinates
• Shortcut URLs and labels
• Search engine preference (Google or Amazon)
• Feature toggle settings (search bar, weather, quotes visibility)

2. Data Usage

GlassTab uses the data it accesses solely to provide the Extension's core functionality:

• Google Calendar data is used exclusively to display upcoming events on the user's new tab dashboard in a sidebar view and monthly calendar view. Calendar data is fetched directly from Google's API to the user's browser and rendered locally. It is not processed, analyzed, or used for any other purpose.
• Weather data is used to display current conditions on the dashboard.
• Daily quotes are displayed as motivational text on the dashboard.
• User preferences are used to personalize the dashboard layout and appearance.

GlassTab does not use any data for advertising, analytics, profiling, market research, or any purpose unrelated to providing the Extension's features.

GlassTab does not use Google user data to train artificial intelligence or machine learning models.

3. Data Sharing

GlassTab does not share, sell, rent, or transfer any user data — including Google user data — to any third parties. This includes:

• No data is sent to any external servers owned or operated by the developer.
• No data is shared with advertisers, analytics providers, or data brokers.
• No data is shared with other applications or services.

The only network requests made by the Extension are:

• To Google's Calendar API (to fetch calendar events, only when the user has connected their Google account)
• To the Open-Meteo API (to fetch weather data)
• To Google Sheets (to fetch daily quotes from a public document)
• To Google's favicon service (to fetch website icons)

These requests are made directly from the user's browser. No intermediary servers are involved.

4. Data Storage & Protection

All user data is stored locally on the user's device using Chrome's built-in storage APIs (chrome.storage.local and localStorage). No data is stored on external servers or in cloud databases.

Google Calendar Data

Calendar event data is held only in the browser's working memory (RAM) during the active browser session. It is re-fetched from Google's API each time the user opens a new tab. Calendar data is not written to persistent storage, cached to disk, or stored beyond the current session.

OAuth Tokens

For non-Chrome browsers (Edge, Brave, etc.) that use the web-based OAuth flow, the access token is stored in localStorage with an expiration timestamp. The token is automatically cleared when it expires (approximately 1 hour). Users can revoke access at any time by clicking "Disconnect" in the Extension's settings, which also deletes the stored token and revokes it with Google.

Security Measures

• All communication with Google APIs is conducted over HTTPS.
• OAuth tokens are never transmitted to any server other than Google's authentication and API endpoints.
• The Extension's Content Security Policy restricts script execution to prevent code injection.
• No user data is ever logged, recorded, or transmitted externally.

5. Data Retention & Deletion

Retention

• Google Calendar data: Not retained. Fetched on each new tab load and held in memory only during the session.
• OAuth access tokens: Retained in localStorage until expiration (~1 hour) or until the user disconnects.
• User preferences: Retained in local storage until the user resets settings or uninstalls the Extension.

Deletion

Users can delete their data at any time through the following methods:

• Disconnect Google: Click "Disconnect" in the Extension's Settings panel. This immediately deletes the stored OAuth token and revokes the Extension's access to the user's Google account.
• Reset Shortcuts: Click "Reset All Shortcuts" in Settings to clear all saved bookmark shortcuts.
• Uninstall: Uninstalling the Extension automatically removes all locally stored data, preferences, and tokens.
• Clear Browser Data: Clearing browser data (localStorage/extension storage) through the browser's settings will remove all Extension data.

Since no data is stored on external servers, there is no server-side data to request deletion of.

Google API Services Limited Use Disclosure

GlassTab's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Cookies & Tracking

GlassTab does not use cookies, analytics, tracking pixels, or any form of user tracking or monitoring.

Children's Privacy

The Extension is not directed at children under the age of 13 and does not knowingly collect data from children.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be reflected on this page with an updated revision date. Continued use of the Extension after changes constitutes acceptance of the updated policy.

Contact

If you have questions about this Privacy Policy or wish to request data deletion, please contact us at [email prote