Privacy, by design.
Core tab management is local to your browser and needs no account. AI, an account, cross-device account sync, and payments are all optional and opt-in — this page explains exactly what each one sends, stores, and how to delete it.
Effective 7 July 2026 · ← Back to TabRack
The short version
- Tab management is local. Triage, folders, sessions, sleep, blocker, focus, notes, and screen-time run on your device and need no account.
- An account is optional. It's only needed for built-in AI and server-side sync. When you create one we store your email and a hashed access token and password — never in plain text.
- Payments go through Razorpay. We never see or store your card number or full payment details.
- We don't sell or share your data, and analytics are opt-in and off by default.
What TabRack stores on your device
Everything for core features lives in chrome.storage.local, in your
browser profile:
- Per-tab last-active timestamps (to find idle tabs)
- Your settings, saved sessions, folders, and the archive
- Per-URL notes and any cached page summaries
- Up to 50 recently-closed tabs (URL, title, time) for one-click restore
- Optional per-domain screen-time totals for today (if you enable tracking)
- If you connect an account: your email and a cached copy of your plan and AI usage, stored locally on the device (not synced)
Your TabRack account (optional)
You can create a free account to use built-in AI and server-side sync. When you do, our managed backend stores:
| Data | Why, and how it's protected |
|---|---|
| Email address | To send receipts and important service notices, and to recover your account. Stored in lowercase for de-duplication. |
| Access token & password | Stored only as a hash (never in plain text) so your device can authenticate to the backend. The token is what your extension sends; it is never placed in a URL. |
| Plan & usage | Your plan (Free/Pro), subscription status, and monthly AI token usage, so we can enforce limits and show your usage. |
| Synced tab data (opt-in) | Only if you turn on account sync: your settings, sessions, archive, notes, and folders are stored as one document tied to your account. It supersedes browser sync while connected. If you don't enable it, none of this leaves your device. |
Opt-in features that use the network (off by default)
| Feature | What is sent, and where |
|---|---|
| Built-in AI | AI requires a connected account (or your own provider key). When you enable AI and run a command or summary, the titles and URLs of your open tabs (for commands) or the current page's text (for a summary) are sent to the TabRack backend, which proxies them to the AI provider to produce the result. Used only to answer that request; your tabs are not stored on the server. |
| Browser sync | Mirrors your settings, sessions, archive, notes, and folders through the browser's own sync storage to your signed-in browsers. No TabRack server is involved, and your account token is never synced. |
| Account sync | If you connect an account and turn it on, the same data is stored as one document on the TabRack backend. It supersedes browser sync while connected. |
| Payments | Handled by Razorpay. When you upgrade to Pro or buy a top-up, checkout is completed on Razorpay's hosted pages. We receive confirmation of payment (order/subscription id, status, amount) but never your card number, CVV, or full payment credentials. Payment data is handled under Razorpay's privacy policy. |
| Usage analytics |
Off by default. When on, only anonymous UI event names (e.g.
manager.view.tree) are sent to the TabRack backend — never tab
titles, URLs, notes, summaries, or page content. Tied to a random
per-install id, not your account; turning it off deletes the id and any
queued events.
|
Permissions, and why
| Permission | Why |
|---|---|
tabs |
List/close/reorder tabs and read titles & URLs (not page content). |
storage + unlimitedStorage |
Persist settings, timestamps, notes, folders, sessions, and the archive. |
alarms |
Periodic inactivity checks (MV3 workers can't keep timers). |
notifications |
Reminder, auto-kill undo, and duplicate-tab prompts. |
tabGroups |
Create and update Chrome tab groups for rule-based grouping. |
bookmarks |
Search your bookmarks in the Bookmarks view (read-only). |
declarativeNetRequest |
Block listed domains for the site blocker — no page content is read. |
scripting + activeTab |
Read the current page only when you ask for an AI summary or copy-as-Markdown, on that tab only. |
| host permissions | Reach only the TabRack backend for the opt-in AI and account-sync features, and the AI provider used by the proxy. |
Who we share data with
We use a small number of sub-processors strictly to run the service, and only the data each one needs:
- Razorpay — payment processing for Pro and top-ups. Card and payment details go to Razorpay, not to us. Loaded only on the pricing page, and only when you start a checkout.
- Third-party AI provider — our backend relays your AI requests to a third-party model provider to generate the response, only when you use AI and only for that request. This may involve transferring the request contents outside your country (see international transfers below).
- Google Fonts — this marketing website loads the Inter typeface from Google Fonts, which means your browser contacts Google's servers (and shares your IP address) when you view these pages. The extension itself does not load Google Fonts.
We do not sell, rent, or share your personal data with third parties for advertising, and there is no hidden telemetry.
Data retention
- Local data stays until you clear it or uninstall the extension.
- Account data (email, hashed credentials, synced document) is kept while your account exists, and deleted when you delete your account.
- Payment and order records are retained as required for accounting, tax, and fraud-prevention obligations, even after account deletion.
- Opt-in analytics are aggregated; the per-install id and queued events are deleted when you turn analytics off.
Data controller
The data controller for the personal data described here is Ashish Kumar Choubey, a sole proprietor operating TabRack from Bangalore, India. For any privacy question or to exercise a right below, contact hello@tabrack.com. Full business details are on the Contact page.
Legal bases for processing
Where the GDPR or similar laws apply, we rely on these legal bases:
- Contract — to create and run your account, provide AI and account sync, and process Pro/top-up payments you ask for.
- Legitimate interests — to keep the service secure, prevent abuse, and enforce usage limits, balanced against your rights.
- Consent — for opt-in features such as usage analytics; you can withdraw consent at any time by turning them off.
- Legal obligation — to retain payment and tax records as the law requires.
Your rights
Depending on where you live (for example under the EU/UK GDPR or California's CCPA/CPRA), you have the right to:
- access the personal data we hold about you, and receive a copy;
- correct inaccurate data or complete incomplete data;
- delete your account and its associated data (erasure);
- export your synced data in a portable format;
- object to or restrict certain processing;
- under the CCPA/CPRA, know what we collect and request deletion — and we confirm we do not sell or share your personal information.
To exercise any of these, email hello@tabrack.com from your account address. We won't discriminate against you for exercising a right. If you're in the EEA or UK and think we've mishandled your data, you may also complain to your local data-protection supervisory authority.
International data transfers
Our backend and our AI model provider may process your data on servers outside your country, including outside the EEA/UK. Where required, such transfers rely on appropriate safeguards (such as the European Commission's Standard Contractual Clauses). By using the AI and account-sync features, you understand that the data needed for those features is processed in this way.
Children
TabRack is not directed to children under 16, and we do not knowingly collect personal data from them. If you believe a child has given us personal data, contact hello@tabrack.com and we'll delete it.
Removing your data
Uninstalling from chrome://extensions deletes all local data.
Disabling sync and clearing it removes the synced copy from your browser
account; signing out removes the account cache from that device. To delete your
account and its server-side data (email, hashed token, synced document,
usage counters), open Options → Account → Delete account & data in
the extension — it erases everything immediately. You can also email
hello@tabrack.com from your account
address. Paid order records are retained (anonymized) as noted above for
accounting/tax obligations.
What TabRack never does
- No account is required for core tab management.
-
No
<all_urls>host permission — it can't read arbitrary page content. - No selling, sharing, or transfer of your data to third parties for advertising.
- No storing of your card number or full payment credentials.
- No hidden telemetry — analytics are opt-in and off by default.
Changes to this policy
If we make material changes, we'll update the effective date above and, where appropriate, notify you. Continued use after changes take effect means you accept the updated policy.
Contact
Questions about privacy, or a data access/deletion request? Email hello@tabrack.com or see our Contact page.