Privacy Policy - SwiftShot

Overview

SwiftShot is a Chrome extension developed by AIBridges (Cranston, RI). It provides screenshot capture, annotation, redaction, OCR, voice commands, and encrypted export features for web pages.

This extension is designed with a privacy-first architecture. All image processing, text recognition, encryption, and annotation happens entirely within your browser. No screenshots, images, or document content are ever uploaded to any external server.

What Data We Store

SwiftShot stores a small amount of data locally on your device using chrome.storage.local:

License key — Your Pro license key, if you have one. Stored locally only.
Capture count — A counter for daily free-tier usage limits. Resets daily.
Extension settings — Your preferences (default export format, annotation colors, etc.).

This data never leaves your device. It is not transmitted to AIBridges or any third party.

What We Do NOT Collect

No screenshots or captured images are uploaded anywhere
No browsing history or URLs you visit
No personally identifiable information (name, email, address)
No analytics, telemetry, or usage tracking
No cookies or tracking pixels
No advertising identifiers
No IP address logging
No page content or DOM data
No user accounts — there is no sign-up or login

We do not operate any data collection servers. There is no "phone home" behavior.

Voice Commands Disclosure

SwiftShot offers optional voice commands using the browser's built-in Web Speech API (SpeechRecognition). This feature is entirely opt-in and only active when you explicitly enable it.

Important: In Google Chrome, the SpeechRecognition API may transmit audio to Google's servers for speech-to-text processing. This is a Chrome platform behavior, not something controlled by our extension. The recognized text is used locally to execute annotation commands and is not stored or transmitted by SwiftShot.

If you are concerned about audio data being sent to Google, you may choose not to enable voice commands. The extension functions fully without them.

For details on Chrome's speech processing, see Google Chrome's Privacy Policy.

OCR Text Extraction

Optical character recognition (OCR) is performed entirely on your device using Tesseract.js, an open-source library that runs in the browser. No images or extracted text are sent to any external server for processing.

The OCR engine, language data, and all processing run locally within the extension's context. Extracted text remains in your browser and is only included in exports that you manually save to your device.

Encryption

AES-256-GCM encryption for exported files is performed entirely in your browser using the Web Crypto API. Encryption keys are derived locally via PBKDF2 from a password you provide. Passwords and encryption keys are never stored or transmitted.

Chrome Permissions & Why We Need Them

SwiftShot requests the following Chrome permissions:

activeTab

Required to capture a screenshot of the currently visible tab when you click the extension or use a keyboard shortcut.

scripting

Required to inject the content script that handles region selection and full-page scroll capture on the active page.

storage

Required to save your settings, license key, and daily capture count locally using chrome.storage.local.

downloads

Required to save exported files (PNG, PDF, DOCX, encrypted) to your local Downloads folder.

offscreen (if applicable)

Used to process full-page scroll captures and image compositing in a background context without interfering with the visible page.

No permission is used to read your browsing history, access other tabs, or monitor your activity. Each permission is used solely for its stated purpose.

Third-Party Services

SwiftShot does not integrate with any third-party analytics, advertising, or data collection services. Specifically:

No Google Analytics or any analytics platform
No advertising networks
No crash reporting services
No external APIs called during normal use

The only external dependency is the Chrome SpeechRecognition API for voice commands (opt-in), which is a built-in browser feature governed by Google's own privacy policy.

License Key Activation

Pro license keys are entered directly into the extension and stored locally in chrome.storage.local. The current version validates license keys locally and does not contact any external server for activation or verification.

In a future update, we may implement server-side license validation. If we do, we will update this privacy policy before that change is released and clearly disclose what data is transmitted (limited to the license key itself).

Data Retention & Deletion

All data stored by SwiftShot resides locally on your device in Chrome's extension storage. We have no access to it.

Uninstall the extension — Chrome automatically removes all extension storage data when you uninstall.
Clear manually — You can clear the extension's data at any time via Chrome Settings > Extensions > SwiftShot > Details > Clear Data.
Exported files — Files you save to your device are under your control. The extension does not retain copies.

Since we do not collect or store data on any server, there is no remote data to delete.

Children's Privacy

SwiftShot is a general-purpose productivity tool. We do not knowingly collect any personal information from anyone, including children under the age of 13. Since no personal data is collected or transmitted, no special provisions are necessary under COPPA.

Changes to This Policy

If we make material changes to this privacy policy, we will update the "Last updated" date at the top of this page. For significant changes (such as introducing server-side license validation), we will also notify users through the extension's update notes in the Chrome Web Store.

Contact Us

If you have questions about this privacy policy or the data practices of SwiftShot, please contact us:

AIBridges — Cranston, Rhode Island
Contact Form
(401) 327-2971
aibridges.org