Privacy Policy for Extension Sentry

Extension Sentry by SessionShare

Extension Sentry by SessionShare ("we," "our," or "the extension") is committed to protecting your privacy. This Privacy Policy explains how our browser extension collects, uses, and protects your information.

1. Information We Collect

Extension Information

  • What we collect: Names, permissions, and host permissions of installed browser extensions
  • Why: To analyze and identify extensions with potentially risky permission combinations
  • How it's used: Displayed locally in the extension popup to inform you of security risks
  • Storage: No extension data is transmitted to external servers

Website Visit Data

  • What we collect: Domains/hostnames of websites you visit
  • Why: To track which websites you've accessed (for SessionShare integration)
  • How it's used: Stored locally and can be shared with SessionShare app if installed
  • Storage: Stored in Chrome's local storage on your device

Cookie Data

  • What we collect: Browser cookies when explicitly triggered by SessionShare integration
  • Why: To enable session sharing functionality with the SessionShare application
  • How it's used: Cookies are only accessed, transferred, or injected when you explicitly use SessionShare features
  • Storage: Cookies are handled in-memory and not permanently stored by our extension

Active Tab Information

  • What we collect: URL of the currently active tab
  • Why: To detect when you visit sensitive websites (e.g., Google, GitHub, AWS, PayPal, Stripe)
  • How it's used: To display security warnings when risky extensions are active on sensitive pages
  • Storage: Not stored; only used momentarily for detection

2. Browser Permissions Explained

Our extension requests the following permissions:

PermissionPurpose
storageStore locally: list of visited website domains, whitelist of trusted extensions
cookiesAccess and manage cookies for SessionShare integration (session sharing)
tabsDetect active tab URL to show security warnings on sensitive websites
managementRead installed extensions and their permissions to identify risky ones
scriptingInject content scripts to display security banners on web pages
notificationsShow browser notifications when high-risk extensions are installed
<all_urls>Monitor all websites to track visits and show warnings

3. Data Sharing and Third Parties

SessionShare Integration

Our extension is designed to work with SessionShare.

When SessionShare is installed and you use its features, the extension:

  • Shares visited website domains with SessionShare
  • Transfers cookies between tabs for session management
  • Opens new tabs with injected cookies as requested

No External Data Transmission

  • We DO NOT send any data to our own servers
  • We DO NOT track your browsing history beyond local storage
  • We DO NOT sell or share your data with any third parties (except SessionShare when explicitly used)

4. Data Storage and Security

  • All data is stored locally on your device using Chrome's storage API
  • No cloud storage or remote databases are used by this extension

Data Persistence

Stored data remains until you:

  1. Clear browser data
  2. Uninstall the extension
  3. Manually clear it through extension features

5. Your Rights and Controls

You have the right to:

View stored dataCheck Chrome's extension storage
Delete dataClear stored websites and preferences at any time
Disable featuresControl which extensions are whitelisted
UninstallRemove the extension completely to delete all associated data

6. Changes to Risky Extension Detection

This extension monitors for extensions with both:

  • Dangerous permissions: cookies, webRequest, webRequestBlocking, debugger, contentSettings
  • Broad access: <all_urls>, http://*/*, https://*/*, *://*/*

This detection logic runs locally and privately on your device.

7. Children's Privacy

This extension is not directed at children under 13. We do not knowingly collect information from children.

8. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be reflected with an updated "Last Updated" date. Continued use of the extension after changes constitutes acceptance.

9. Contact Information

For questions or concerns about this privacy policy:

Extension: Extension Sentry by SessionShare

Related Service: https://sessionshare.app

Your Consent

By installing and using Extension Sentry, you consent to this Privacy Policy.

Note: This extension performs all security analysis locally on your device. Your extension data, browsing patterns, and cookies are never transmitted to external servers unless you explicitly use SessionShare integration features.