Privacy
Policy
Last updated — March 28, 2026

— 01
Overview
nstance is a Chrome extension that saves and restores browser sessions — tabs, windows, and tab groups. This policy explains what data we collect, how we use it, and what control you have over it.

— 02
Information We Collect
We only collect what is necessary to make the extension work.

Local data (stored on your device only):
Session data -
— tab URLs, titles, favicon URLs, and tab group information
Session names -
— names you assign to saved sessions
Settings -
— your preferences (dark mode, delete on load/save, pinned/grouped tab rules)
Timestamps -
— creation and modification dates
Cloud data (only if you sign in):
Session data -
— encrypted with AES-256-GCM before leaving your device
Google account info -
— your user ID, email, and display name for authentication
OAuth tokens -
— used only for secure server communication

— 03
How We Use Your Information
Local data never leaves your browser. It is used solely to save and restore your sessions.

If you sign in, your session data is synced to Firestore so you can access it across devices. It is encrypted before upload — we cannot read it. Your Google account info is used only to identify your data in the database; it is never shared or used for any other purpose.

We do not:
Access your Gmail, Drive, or any other Google service
Share your data with third parties or advertisers
Use your data for analytics, profiling, or advertising
Sell or rent your personal information

— 04
Data Storage & Security
Local storage:
Stored via Chrome’s chrome.storage.local API. Only the extension can access this data. Persists until you remove the extension or clear browser data.

Cloud storage:
Stored in Google Firestore, transmitted over HTTPS. Session window data is encrypted with AES-256-GCM on-device before upload. The encryption key lives in Chrome Sync — only your account can decrypt it. Data is isolated by Google user ID.

Data retention:
Local data -
— persists until you delete the extension or clear storage
Cloud data -
— persists until you delete sessions or revoke access
Deleted data -
— permanently removed immediately on deletion

— 05
Data Sharing
We do not sell, trade, or rent your personal information. The only third-party services involved are:
— Google OAuth: Authentication only — sign in with Google
— Google Firestore: Optional encrypted session storage

— 06
Permissions Required:
tabs: Read tab URLs, titles, and favicons to save sessions
windows: Access window structure for multi-window sessions
storage: Store session data and settings locally
tabGroups: Save and restore Chrome tab groups
identity: Google Sign-In for optional cross-device sync

— 07
Your Rights
Use without an account:
— the extension is fully functional offline with no sign-in required
Sign out anytime:
— stops cloud sync instantly; local data is unaffected
Delete your data:
— delete individual sessions in the popup; uninstalling the extension clears all local data
Access & portability:
— all your data is visible and manageable directly in the extension

— 08
Children’s Privacy
nstance is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, contact us and we will delete it promptly.

— 09
Changes to This Policy
We may update this Privacy Policy from time to time. Changes take effect when posted, reflected by an updated “Last Updated” date above. Continued use of the extension after changes constitutes acceptance.

— 10
Contact
Questions or concerns about this Privacy Policy? Contact us:
— help@nstance.casa
— GitHub: tabrizoilcompany