Privacy Policy - Tutearn CRM Extension

Overview

The Tutearn CRM Extension browser extension ("Extension") is designed to help you capture company information and integrate with the Tutearn CRM platform. This privacy policy explains what information we collect, how we use it, and your rights.

Information We Collect

User-Provided Information

API Keys:

  • You must provide a Twenty CRM API key to use this extension

  • This key is stored securely in your browser's local storage using Chrome's sync storage

Company Data:

  • When you capture company information from websites, you may provide or confirm:

    • Company name

    • Email addresses

    • LinkedIn URLs

    • Country/location information

    • Messaging app details (optional)

    • Custom field information

Automatically Collected Information

Website Content (Local Only):

  • The extension analyzes website content on your computer to automatically detect:

    • Company names (from page titles, headers, meta tags)

    • Email addresses (from mailto links and page text)

    • LinkedIn URLs

    • Contact information

    • Country information (from footer or address elements)

Extension Usage:

  • Extension usage events are stored locally (not sent to us)

  • No analytics or tracking data is sent to third parties

How We Use Your Information

Primary Uses:

  1. Store company information in your Twenty CRM instance

  2. Pre-fill forms to save you time

  3. Enable LinkedIn integration to capture profiles and messages

  4. Provide context menu functionality on websites

What We Do NOT Do:

  • ❌ Do NOT collect or store your data

  • ❌ Do NOT send your data to third parties

  • ❌ Do NOT track your browsing history

  • ❌ Do NOT analyze your website visits

  • ❌ Do NOT create user profiles

  • ❌ Do NOT sell or share your information

  • ❌ Do NOT use your information for advertising or marketing

Data Storage & Security

Local Storage:

  • Your API key is stored in Chrome's sync storage only

  • Syncs securely across your Chrome browsers where you're signed in

  • Protected by your Chrome account password

Data Transmission:

  • All data is transmitted only between your browser and your Twenty CRM instance

  • Uses HTTPS encryption

  • No data passes through our servers

  • No third-party data processors

No Cloud Backup:

  • No data is backed up to cloud services we control

  • No central database stores your information

  • You retain full control of all data

Website Content Extraction

Important: When you use the company capture feature:

  • Website content is analyzed only on your computer

  • Extracted information stays in your browser

  • You decide what data to submit to your CRM

  • No website content is stored or transmitted anywhere

LinkedIn Integration

LinkedIn Profile Capture:

  • When capturing profiles, only the profile URL and visible information is used

  • No private messages are captured automatically

  • Message logging is manual - you choose which conversations to save

Third-Party Services

Chrome Web Store:

  • This extension is distributed through the Chrome Web Store

  • Chrome collects installation and update statistics (standard browser behavior)

  • We do not receive detailed user information from Chrome Web Store

Your Twenty CRM Instance:

  • Your CRM instance may have its own privacy policy

  • Review your CRM provider's privacy practices

  • We do not control data stored in your CRM

Your Rights

Data Access:

You can access all data we store for you:

  • Check your browser's extension storage (chrome://extensions)

  • Review data in your Twenty CRM account

Data Deletion:

  • Uninstall the extension to remove all locally stored data

  • Request data deletion from your Twenty CRM account

  • Your data is not retained after extension uninstallation

Permissions:

  • The extension requests specific permissions for functionality

  • Review permissions at: chrome://extensions/[extension-id]

  • You can modify permissions in Chrome settings

Changes to This Policy

We may update this privacy policy occasionally to reflect:

  • Changes in extension functionality

  • Updates to privacy practices

  • Legal compliance requirements

Current Version: 1.0
Last Updated: [INSERT DATE]

Contact & Support

For privacy questions or concerns regarding this extension:

Send inquiries to: [your support email]

Include:

  • Your question or concern

  • Any screenshots or examples if applicable

  • How the issue affects you

Permission Justification

The extension requests the following permissions. Here's why:

storage Permission

  • Purpose: Store your API key securely

  • Data Stored: Only your Twenty CRM API key

  • Transmitted: Never sent to third parties

activeTab Permission

  • Purpose: Access the currently active webpage

  • Usage: Extract company information from the page content

  • Data: Not stored, analyzed locally only

scripting Permission

  • Purpose: Inject UI elements (forms, modal, context menu)

  • Usage: Display the capture form and interface elements

  • Data: No data extraction without your action

tabs Permission

  • Purpose: Identify when you're on LinkedIn or other company pages

  • Usage: Show/hide relevant extension buttons

  • Data: Tab URLs processed locally only

contextMenus Permission

  • Purpose: Add "Add Company to CRM" option to right-click menu

  • Usage: Provide convenient company capture option

  • Data: No data collection

host_permissions (URL Patterns)

  • linkedin.com - Access LinkedIn profiles and company pages

  • crm.tutearn.com - Communicate with your Twenty CRM instance

  • http:/// & https://* - Capture company data from any website

  • Usage: Functionality as described above

  • Data: Processed locally, transmitted only to your CRM

Compliance

This extension complies with:

  • ✅ Chrome Web Store Policies

  • ✅ GDPR principles (where applicable)

  • ✅ CCPA requirements (where applicable)

  • ✅ Chrome Security Best Practices

  • ✅ Data minimization principles

Summary

We prioritize your privacy:

  • No tracking or analytics

  • No data collection beyond what you provide

  • No sharing with third parties

  • Your data stays in your control

  • Transparent about what we collect and use

You have the power. Choose the data you share, how it's stored, and where it's sent. The extension works for you, not the other way around.

Plain English Version

In short:

Your Tutearn CRM Extension:

  1. Stores only your API key locally

  2. Analyzes web pages on your computer to help extract company info

  3. Sends data only to your Tutearn CRM instance

  4. Never tracks, sells, or shares your information

  5. Let's you control exactly what data gets saved to your CRM

That's it. No tracking pixels. No analytics. No surprise data collection.

Your privacy is protected by design.