Privacy Policy
Tether Chrome Extension — Last updated: January 2025
Summary: Tether stores all data locally in your browser. We do not collect, store, or have access to your emails, Salesforce data, or personal information on our servers.
What Data Tether Collects
Tether stores the following data locally in your browser using Chrome's storage API:
- Salesforce OAuth Tokens: Access token and refresh token to authenticate with your Salesforce org
- User Preferences: Settings like auto-log preference, include email body option, and icon style
- Blocked Domains: Email domains you've chosen to exclude from logging
- Logged Email Hashes: SHA-256 hashes of logged emails to prevent duplicates (not the actual email content)
- Usage Statistics: Count of emails logged (stored locally for your reference)
What Data Tether Accesses
When you use Tether, the extension reads email data from Outlook Web to enable logging functionality:
- Email Content: Sender, recipients, subject, and body text from emails you choose to log
- Email Metadata: Timestamps and email addresses for contact matching
This data is read directly from your browser and sent to your Salesforce org when you click "Log Email." Tether does not store, transmit, or have access to this data on any external server.
Third-Party Services
Tether interacts with the following third-party services:
- Salesforce: To create tasks and look up contacts/leads in your connected org. Data is sent directly from your browser to Salesforce using your OAuth credentials.
- Stripe: For Pro subscription payments. When you subscribe, you're redirected to Stripe's secure checkout. Tether never sees or stores your payment information.
- Grit Kit Subscription Verification: Tether checks your Pro subscription status by sending your Salesforce user email to our verification endpoint. This is the only data sent to our servers.
Permissions Explained
- identity: Required for Salesforce OAuth authentication flow
- storage: Stores preferences and tokens locally in your browser
- activeTab: Reads email content from the active Outlook tab when you interact with Tether
- alarms: Schedules token refresh and retry queue processing
- Host permissions (Outlook domains): Injects the Tether interface into Outlook Web
- Host permissions (Salesforce domains): Makes API calls to your Salesforce org
Data Security
- All Salesforce communication uses OAuth 2.0 — your password is never stored
- Tokens are stored in Chrome's secure local storage
- Tokens automatically refresh every 30 minutes
- All API calls use HTTPS encryption
Your Rights
You have full control over your data:
- Disconnect Salesforce: Click "Disconnect" in the extension popup to revoke access and delete stored tokens
- Clear All Data: Uninstalling the extension removes all locally stored data
- Block Domains: Prevent specific email domains from being logged
- View Logged Emails: All logged activities appear in your Salesforce org, giving you a complete audit trail
Data Retention
Tether does not retain any data on external servers. All data is stored locally in your browser and is deleted when you:
- Disconnect from Salesforce
- Uninstall the extension
- Clear your browser data
Children's Privacy
Tether is designed for business use and is not intended for children under 13. We do not knowingly collect information from children.
Changes to This Policy
We may update this privacy policy from time to time. Changes will be posted on this page with an updated revision date.
Contact
If you have questions about this privacy policy or Tether's data practices, contact us at: