Privacy Policy

Introduction

Magpie ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our Chrome extension.

Information We Collect

Information You Provide

• Account Information: When you authenticate with Google, we collect your email address and basic profile information.
• Integration Data: When you connect integrations (e.g., Google Drive), we collect access tokens to access your files on your behalf.

Information We Automatically Collect

• File Metadata: We index metadata about your files (filename, type, path, modification date) to enable search functionality. We do NOT store or access the actual content of your files.
• Usage Data: We collect basic usage information such as search queries and feature usage to improve our service.

How We Use Your Information

We use the collected information to:

1. Provide the Service: Enable search across your connected data sources
2. Maintain and Improve: Improve search accuracy and add new features
3. Authentication: Verify your identity and provide secure access
4. Support: Respond to your inquiries and provide customer support

Data Storage and Security

• Storage: Your data is stored securely in Supabase (PostgreSQL database)
• Encryption: All data is encrypted in transit (HTTPS) and at rest
• Access Control: We implement Row Level Security (RLS) policies to ensure you can only access your own data
• Credentials: OAuth tokens are securely stored and never exposed to the client-side application

Data Sharing and Third Parties

We do NOT:

• Sell your data to third parties
• Share your data with advertisers
• Use your data for any purpose other than providing the service

We may share data with:

• Service Providers: Supabase (database hosting), Google Cloud Platform (authentication and API access)
• Legal Requirements: If required by law or to protect our rights

Your Rights and Choices

You have the right to:

1. Access: View all data we have about you
2. Delete: Request deletion of your account and all associated data
3. Disconnect: Remove integrations at any time through the settings page
4. Export: Request an export of your data

Google Drive Integration

Permissions

When you connect Google Drive, we request the following permissions:

• https://www.googleapis.com/auth/drive.file: Access to files created or opened by the app in Google Drive
• https://www.googleapis.com/auth/drive.readonly: Read-only access to your Google Drive files for indexing
• https://www.googleapis.com/auth/userinfo.email: Access to your email address for account identification

What We Access

• File names, types, and paths
• File modification dates
• Folder structure
• Basic file metadata

What We DON'T Access

• File contents (we only index metadata)
• Files in your trash
• Files you haven't granted access to

Revoking Access

You can revoke Magpie's access to your Google Drive at any time by:

1. Disconnecting the integration in Magpie settings
2. Removing Magpie from Google Account Permissions

Google API Services User Data Policy

Magpie's use and transfer of information received from Google APIs adheres to Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

• We only access Google Drive data to provide search functionality
• We do not use Google Drive data for serving ads
• We do not allow humans to read Google Drive data (automated indexing only)
• We do not transfer Google Drive data to third parties (except as necessary to provide the service)

Compliance

We comply with:

• GDPR (General Data Protection Regulation) for EU users
• CCPA (California Consumer Privacy Act) for California residents
• Google API Services User Data Policy for Google Drive integration

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at GitHub.