Privacy Policy for "Houdini"

Effective Date: 27/04/2025

Introduction

"Houdini" is a Chrome extension designed to simplify user authentication processes by automatically retrieving OTP codes and login links from users' email accounts via a linked web application (the "Web App").

Information We Collect

- The Chrome extension itself does **not** collect, store, or transmit any personal data directly. - When using Houdini, users may optionally link their Gmail accounts through the Web App, where OAuth authorization is performed securely. - OAuth access tokens are securely stored in a private backend database (managed via Supabase) and not within the extension itself.

How We Use Information

- Linked email accounts are accessed **only via server-side processes** to retrieve OTP codes or login links on behalf of the user. - Access to user data is **strictly limited** to the functionality necessary for auto-filling OTPs or login credentials into browser forms.

Data Storage and Security

- OAuth tokens and any personal data are securely stored in the Web App's backend (Supabase) using industry-standard security practices. - No sensitive data is stored within the extension or in the browser local storage.

Third-Party Services

- The Web App utilizes Supabase for database management and user authentication. - Gmail access is granted via Google's OAuth 2.0 system under the user's explicit consent.

User Consent

- Users must explicitly authorize the Web App to access their Gmail accounts. - Users can revoke access at any time via their Google Account permissions.

Contact

If you have any questions about this Privacy Policy, you can contact us at our contact page: