Add to Chrome
Add to EdgePrivacy Policy
Last updated: March 08, 2026
At ChatGPT Toolbox ("we", "us", "our"), operated by Infi Developments, we are committed to protecting your privacy. This Privacy Policy explains what data we collect, how we use it, and your rights — in plain language.
1. Data Controller
Infi Developments is the data controller responsible for your personal data. For any privacy-related inquiries, contact us at support@infi-dev.com.
2. What Data We Collect
Data stored locally in your browser (never sent to us):
- Your ChatGPT conversation content
- Extension settings and preferences
- Local search history within the extension
Data synced to our servers (encrypted):
When you use Premium features like cross-device sync, the following data is transmitted and stored in encrypted form on our servers. We cannot read or access the content of this data:
- Folder names and folder structure
- Saved prompts and prompt chains
- Conversation IDs (for pinned chats)
- Message IDs (for bookmarked messages)
- Usage tracker data (message counts, session durations, activity patterns) — Premium only
Payment data:
Payments are processed by LemonSqueezy (our payment provider). We do not store your credit card details. LemonSqueezy provides us with your email address and payment status so we can verify your subscription. LemonSqueezy's privacy policy governs how they handle your payment information.
Analytics:
We use Google Analytics on our Chrome Web Store listing page only. We do not use analytics within the extension itself or on our website.
Cookies:
We do not use cookies on our website or within the extension.
3. Legal Basis for Processing (GDPR)
We process your data based on the following legal grounds under GDPR Article 6:
- Contract performance: Processing necessary to provide the services you signed up for (e.g., syncing folders across devices when you purchase Premium).
- Legitimate interest: Processing necessary for the operation and improvement of our services, provided it does not override your rights.
- Consent: Where applicable, we process data based on your explicit consent (e.g., optional communications). You may withdraw consent at any time.
4. How We Use Your Data
- Provide our service: Enable folder sync, prompt access, bookmarks, and usage tracking across your devices.
- Verify subscriptions: Check your payment status via LemonSqueezy to unlock Premium features.
- Respond to support requests: If you contact us, we use your email to respond.
- Improve the extension: Aggregated, non-personal usage patterns help us improve features.
5. Data Sharing and Third Parties
We do not sell, rent, or trade your personal data. We share data only with:
- LemonSqueezy: Payment processing and subscription management. They receive your email and payment details directly.
- Google Analytics: Anonymous usage data on our Chrome Web Store listing only.
- Legal obligations: We may disclose data if required by law or in response to a valid legal request from a government authority.
6. Data Security
All data stored on our servers is encrypted at rest. We cannot read the content of your folders, prompts, or bookmarks. We use industry-standard security measures including HTTPS encryption for all data in transit and secure cloud infrastructure.
7. Your Rights
Under GDPR and applicable data protection laws, you have the following rights. To exercise any of these rights, contact us at support@infi-dev.com:
- Right of access: Request a copy of the personal data we hold about you.
- Right to rectification: Request correction of inaccurate data.
- Right to erasure: Request deletion of your personal data from our servers.
- Right to data portability: Request your data in a structured, machine-readable format.
- Right to restrict processing: Request that we limit how we use your data.
- Right to object: Object to processing based on legitimate interest.
- Right to lodge a complaint: You have the right to file a complaint with your local data protection authority.
We will respond to all data rights requests within 30 days.
8. Data Retention
We retain your synced data (folders, prompts, conversation IDs, message IDs, usage statistics) for as long as your account is active. Data is not automatically deleted.
If you wish to have your data deleted, contact us at support@infi-dev.com and we will remove all associated data from our servers within 30 days.
Uninstalling the extension removes all locally stored data from your browser immediately. Server-side data requires a separate deletion request.
9. International Data Transfers
Our services are available worldwide. Your data may be processed in countries outside your country of residence. Where we transfer data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place in compliance with GDPR requirements.
10. Children's Privacy
Our free extension does not have age restrictions. However, purchasing a paid plan requires a valid credit card, which is limited to individuals of legal age in their jurisdiction. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, contact us at support@infi-dev.com and we will promptly delete it.
11. Enterprise Data Handling
For Enterprise plans, the organization admin can view aggregated usage statistics (e.g., total messages, sessions, active members). Individual conversation content is never accessible to admins or our servers. Each team member's data remains encrypted and private, consistent with the same privacy protections applied to all ChatGPT Toolbox users.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. For significant changes, we will make reasonable efforts to notify you via the extension or email.
13. Contact Us
If you have any questions about this Privacy Policy, your data, or your rights, contact us at: support@infi-dev.com