Effective date:
Summary
SidePortal is a Chrome extension that helps you access Google tools and quick links from the Chrome side panel.
This policy explains what data is accessed, what data is stored, and what you can control.
Data we access
- Gmail: Used to show unread status and open Gmail quickly.
- Google Calendar: Used to display upcoming events in the panel.
- Google Drive: Used to open Drive search shortcuts based on your query.
Data we store
- Personal quick links: Stored in Chrome storage on your device.
- Organization group membership: A group code and membership record may be stored to load shared links.
- Shared org links: Stored in a Supabase database to allow teammates to use the same link set.
Data we do not sell
SidePortal does not sell personal data. SidePortal does not run ads and does not share your data with advertisers.
Authentication and tokens
SidePortal uses Google OAuth via Chrome Identity. Access tokens are used to call Google APIs.
Tokens are handled by Chrome and are not intentionally logged or sold.
Permissions
SidePortal requests permissions needed to support the features shown in the side panel.
If you do not connect Google, Google API calls will not run.
Your controls
- You can log out in the panel to clear cached tokens.
- You can remove the extension at any time from Chrome Extensions.
- You can remove your personal links by clearing extension storage.
Security measures
- Uses HTTPS when communicating with Google APIs and Supabase.
- Aims for least access by requesting only the scopes required for the features.
- Stores personal links locally rather than sending them to a server.
Contact
For support or privacy questions, contact: SidePortal.queries@gmail.com
Note: If your organization requires additional compliance language, you can extend this policy without changing the extension behavior.