Privacy Policy for Script Sentinel

Last Updated:

This Privacy Policy explains how Script Sentinel processes information when you use our CSP Generator browser extension and related services.

1. Introduction

Script Sentinel (we, us, or our) respects your privacy. This Privacy Policy describes how the Script Sentinel – CSP Generator browser extension handles information when you use our services.

2. Data We Process

The Script Sentinel extension is designed to be privacy-first. We do not track your browsing history, collect personal identification, or sell user data.

To fulfill its core functionality, the extension processes the following data only when explicitly triggered by the user:

2.1 Active Tab URL

When you click Generate CSP or New Scan, the extension sends the URL of the active tab to our secure backend (https://script-sentinel.com) to perform a security scan. This URL is used solely to analyze the page’s resources (scripts, styles, fonts, etc.) and generate the Content Security Policy.

2.2 Scan Results

The generated Content Security Policy and the associated URL are sent back to the extension for display.

3. Data Storage

3.1 Local Storage

The extension uses your browser’s local storage (chrome.storage.local) to save your 5 most recent scans. This data resides entirely on your device and is not synchronized with our servers or any third party.

3.2 Backend Processing

The URL sent to our server is processed in memory to perform the scan. We do not permanently store, log, or share the URLs you scan.

4. Third-Party Sharing

We do not sell, trade, or otherwise transfer your information to outside parties. The data you submit is used exclusively to generate the Content Security Policy you requested.

If you have questions about this Privacy Policy, please contact us via the Contact page.