Privacy Policy

Secure Password Generator (Chrome Extension) · Last updated: May 18, 2026

Summary: This extension does not collect, transmit, sell, or share any personal data. Everything runs locally in your browser.

1. Who we are

"Secure Password Generator" (the "Extension") is a free, open-source browser extension that generates cryptographically secure passwords entirely on the user's device. This policy explains what data the Extension handles and how.

2. Information we collect

We do not collect any personal information. The Extension does not include analytics, telemetry, tracking, advertising identifiers, cookies, or any form of remote reporting.

Specifically, the Extension does not collect:

Personally identifiable information (name, email, address, phone number).
Health, financial, authentication, or location information.
Personal communications (emails, messages, chats).
Web browsing history or activity on websites.
Generated passwords or any clipboard contents.

3. Information stored locally

To preserve your preferences between sessions, the Extension stores a small amount of non-personal configuration data on your device using chrome.storage.local:

Selected password length.
Selected character sets (uppercase, lowercase, digits, symbols).
The "exclude similar characters" flag.

This data never leaves your device, is not synced to any server controlled by us, and can be removed at any time by uninstalling the Extension or clearing extension data from Chrome.

4. Permissions we use and why

storage — used only to persist your generator preferences locally (see Section 3).
clipboardWrite — used only to write a generated password to your clipboard when you click the "Copy" button. The Extension never reads the clipboard.

5. Generated passwords

Passwords are generated locally using the browser's crypto.getRandomValues() cryptographic primitive. Generated passwords are not logged, not stored, and not transmitted anywhere. They exist only in the current popup window and, if you choose to copy them, in your operating system's clipboard.

6. Remote code

The Extension does not load or execute any remote code. All JavaScript, HTML, and CSS are bundled inside the published extension package and comply with Manifest V3 requirements (no eval, no remote scripts, no remote CDNs).

7. Third-party services

The Extension does not integrate with any third-party services, SDKs, or APIs. There are no network requests made by the Extension.

8. Data sharing and sale

We do not sell, rent, or share any user data with third parties for any purpose, because we do not collect any user data in the first place.

9. Children's privacy

The Extension is suitable for general audiences and does not knowingly collect information from anyone, including children under 13.

10. Changes to this policy

If this policy changes, the updated version will be published at the same URL, and the "Last updated" date at the top will be revised. Material changes will be reflected in the Chrome Web Store listing.

11. Contact

Questions about this policy can be sent to the publisher contact email listed on the Chrome Web Store item page.