LinkDrop logo LinkDrop

Privacy Policy

Last Updated: December 30, 2025

LinkDrop ("we", "our", or "the Extension") is designed with privacy as a core principle. This Privacy Policy explains what information is collected, how it is used, and the control you have over your data.

1. Introduction

LinkDrop is a Chrome extension that allows users to send the current tab's URL to their other paired devices or contacts. The extension operates on a "minimum data" philosophy: we only process the information strictly necessary to perform this function.

2. Information We Collect

2.1 Local Storage (On Your Device)

The following data is stored locally in your browser (using chrome.storage.local) and is never sent to our servers unless required for a specific action:

  • Device Credentials: A unique Device ID and Device Secret generated upon installation.
  • Pairing Secrets: Cryptographic keys exchanged when you pair with another device.
  • Contact List: Aliases and IDs of devices you have paired with.
  • Inbox Cache: A local copy of messages you have received and their read status.

2.2 Server-Side Data

When you use the service, the following data is transmitted to and processed by our backend (hosted on Supabase):

  • Device Registration: Your Device ID and public key information.
  • Message Metadata: When sending a link, we process the Title and URL of the page you are sharing, along with timestamps.
  • Delivery Logs: Transient records needed to route the message to the recipient.

3. How We Use Your Information

We use the collected information solely for the purpose of providing the LinkDrop service:

  • Authentication: Device credentials are used to sign API requests (HMAC-SHA256), ensuring only you can access your inbox.
  • Delivery: The URL and Title are used to construct the message delivered to the recipient device.
  • Notification: To trigger system notifications when a new link arrives.

We do not:

  • Track your browsing history.
  • Collect personal information like names, emails, or phone numbers.
  • Sell or share your data with third parties or advertisers.
  • Access page content beyond the URL and Title of the specific tab you choose to send.

4. Data Retention

  • Local Data: Persists on your device until you uninstall the extension or use the "Clear Cache" feature.
  • Server Data: Message data is retained in the database to allow for asynchronous delivery (e.g., if the recipient is offline). You can manage or delete this data by deleting the extension or requesting data deletion if you host your own backend.

5. Chrome Permissions

The extension requests the following permissions for specific functions:

  • contextMenus: To add the "Send to..." option in your right-click menu.
  • tabs: To read the URL and Title of the active tab only when you explicitly trigger a send action.
  • notifications: To show you alerts when you receive a link.
  • storage: To save your settings and credentials locally.
  • alarms: To periodically check for new messages in the background.

6. Your Rights and Choices

You have full control over your data:

  • Revoke Access: You can remove a paired contact at any time from the extension popup.
  • Uninstall: Uninstalling the extension immediately removes all local data.

7. Contact

If you have privacy questions or requests, email the developer at hou0922@gmail.com.