Privacy Policy
Summary: Shop Trust AI does not collect, sell, or share your personal data. Your API key stays on your device. The only data sent externally is publicly accessible store policy text, which is sent to the OpenRouter API solely to generate summaries for you.
Shop Trust AI is a Google Chrome extension that automatically scans the publicly accessible policy pages of online stores (shipping, returns, refunds, privacy) and uses AI to summarise them in plain English. It displays a trust score and red flag warnings to help you make informed purchasing decisions.
| Data | Where stored | Purpose | Retention |
|---|---|---|---|
| OpenRouter API key (entered by you) | chrome.storage.sync (your browser only) | Authenticates API calls on your behalf | Until you delete it in Settings |
| Cache TTL preference (1h / 6h / 24h) | chrome.storage.sync | Controls how long scan results are cached | Until you change it |
| Policy scan results per store domain | chrome.storage.local (your device only) | Avoids re-scanning the same store on repeat visits | Until TTL expires or you clear cache in Settings |
None of this data is transmitted to us or any server we operate.
| What is sent | To whom | Why |
|---|---|---|
| Text extracted from publicly accessible store policy pages (e.g. /policies/shipping-policy) | OpenRouter API (openrouter.ai), which routes to OpenAI GPT-4o | To generate plain-English policy summaries and a trust score |
This is publicly available text that any visitor to the store could read. It contains no personal information about you.
| Permission | Why it's needed |
|---|---|
storage | To save your API key and cache scan results locally on your device |
activeTab | To read the current tab's domain name (hostname only) when you open the popup, so the extension can display results for the right store |
<all_urls> host permission | To (1) run detection scripts on all web pages to identify e-commerce sites, and (2) allow the background service worker to fetch publicly accessible policy pages from any store domain. The extension reads only publicly available policy pages, never private or user-specific content. |
You provide your own OpenRouter API key in the extension's Settings page. This key is stored exclusively in chrome.storage.sync, which means it syncs only between your own Chrome browsers signed into the same Google account. It is never transmitted to us, stored on any server we operate, or shared with any third party other than OpenRouter when making API requests on your behalf.
Shop Trust AI uses the OpenRouter API (openrouter.ai/privacy) to process policy text through GPT-4o. By using this extension, policy page text from stores you visit is sent to OpenRouter for processing. Please review OpenRouter's privacy policy for details on how they handle this data.
Shop Trust AI is not directed at children under 13. We do not knowingly collect any information from children.
If we make material changes to this privacy policy, we will update the "Last updated" date at the top of this page. Continued use of the extension after changes constitutes acceptance of the updated policy.
If you have questions about this privacy policy or the extension's data practices, please contact us at: senhajihassan91@gmail.com