Chrome Web Store Compliance 2026

Privacy Policy

This page explains how StartlyTab collects, uses, stores, and shares data when you use the extension, website, and related account features.

User Data Collection

Email address, account ID, display name, and social/profile photo when available
Authentication state, session data, and verification status needed for sign-in
Subscription, membership, and account status returned by our backend

Saved shortcuts, URLs, titles, categories, and custom labels
User-uploaded gateway logos, storage paths, hashes, and sync metadata
Theme, language, selected search engine, persona, snippet preferences, and similar settings

Bookmarks, only when you use bookmark import
Links extracted from supported third-party start pages, only when you trigger an import
Installed extension state, checked only to verify supported import sources
Current tab URL, title, and favicon, only when you add the active page
Website title, icon, or favicon requests for shortcuts you save

Prompts, selected language/persona, and recent in-product history used for AI generation
Custom venting text, chat messages, or other freeform text you submit to AI features
AI-generated perspectives, responses, and related output history when you choose to save or sync it

Search terms entered into the StartlyTab search bar
Queries are sent to your selected search engine or Chrome's default search flow when you search

Open tab count, audio-playing state, mute state, fullscreen/window state, and download-in-progress state
Battery level and idle time on this page
Collected only if you enable context-aware mode, and used as aggregated signals rather than a list of all open tab URLs

Sign-in and account management: Authenticate you, keep you signed in, and restore your synced workspace.
Shortcut management & imports: Save, sync, import, edit, export, and display your saved links and custom logos. Bookmarks or supported start pages are read only when you trigger an import.
Search routing: Send search queries to your selected search engine or Chrome's default search flow. StartlyTab does not intentionally store a separate searchable history of those queries.
AI generation and chat: Send prompts, selected settings, recent history, optional context summaries, and any freeform text you submit to the configured AI provider in order to generate responses.
Billing and entitlements: Verify subscriptions, redemption status, transaction references, and payment-related access.
Security and operations: Maintain caches, prevent sync issues, and send verification or password-reset emails.

On your device: localStorage, chrome.storage.local, and IndexedDB may store app state, preferences, auth/session state, caches, emotion logs, perspective history, and locally cached logo data.
In the cloud: Supabase may store synced account data, gateway overrides, uploaded gateway logos, subscription or membership state, and optional feedback submitted through our backend.
Payment processing: Creem handles checkout and billing portal flows. StartlyTab receives subscription status, transaction references, and limited billing-support metadata rather than full payment card numbers.
Cloud retention: Account-linked synced records are generally kept while your account remains active and until you delete them or request deletion, unless longer retention is required for security, fraud prevention, or legal compliance.
Retention examples: Local perspective history is trimmed to recent entries, emotion logs are kept for up to 30 days, and metadata caches expire automatically over time.
Security: Data sent over the network is intended to use HTTPS/TLS. Access to synced cloud records is controlled by backend rules and service-provider safeguards.

We do not sell your personal data and we do not use it for personalized advertising, creditworthiness decisions, or data brokerage.

Party	Why Data May Be Shared
Google / Firebase / Chrome services	Google sign-in, Firebase authentication, Chrome Search API when you use browser/default search mode, and Google favicon lookups for saved shortcuts.
Search engines you choose	Search terms are sent to the engine you select in StartlyTab when you run a search.
Supabase	Cloud sync, database records, backend functions, and storage for user-uploaded gateway logos.
AI providers (such as DeepSeek, SiliconFlow, or ZhipuAI, depending on configuration)	Process prompts, optional context summaries, recent history, and any freeform text you submit to AI features in order to generate responses.
Creem	Subscription checkout, billing portal access, payment-related customer lookups, and transaction/reference handling.
Resend	Transactional emails such as verification, password reset, and payment-support notifications.
Websites you save or supported import sources	When you add or import shortcuts, StartlyTab may request those pages or parse supported start pages to extract URLs, titles, or icons.

Context-aware mode is optional: You can use StartlyTab in basic mode without enabling the optional browser-state signals described above.
Imports are user-triggered: Bookmark import, supported start-page import, active-tab capture, and similar browser-data access only happen when you explicitly use those features.
AI features are optional: Freeform prompts, venting/chat, and context-aware AI processing only happen when you actively use those features.
Local data: You can remove local app data on this device by clearing your browser storage for StartlyTab or uninstalling the extension. Where available, StartlyTab settings may also help you reset local data.
Synced account data: If you want cloud data deleted, contact support@startlytab.com. We use that request to remove account-linked synced records that are not required to be retained for security, fraud prevention, or legal compliance.
Questions: If you need clarification about our data handling, contact us at support@startlytab.com.