Privacy Policy

Last Updated: February 6, 2026

Prepped ("we", "our", "us") is a Chrome extension designed to help users prepare for meetings by surfacing relevant context before calls. We are committed to protecting your privacy and being transparent about how data is accessed and used.

1. Data Collection & Permissions

Google Calendar (API)

We use the Google Calendar API with the calendar.events.readonly scope only to read upcoming calendar events (meeting titles, times, and attendee lists) in order to display local meeting notifications.

Scope: Read-only access to calendar events.

Usage: To identify when meetings are occurring and display relevant preparation materials.

Processing: Calendar data is processed locally and is not stored on our external servers.

Gmail (On-Screen Content Only)

When you request email context for a meeting, Prepped reads only the email content that is visible in the Gmail tab you have actively opened (such as subjects and recent messages).

No API Access: Prepped does not use the Gmail API.

No Background Scanning: We do not read background inbox data, scan your inbox, or create a persistent email index.

Local Processing: All processing happens locally on your device in real time, and no email content is transmitted to our servers.

User Account (Google OAuth)

We access your Google account email address via OAuth only to identify the signed-in user within the extension interface. This information is processed locally and is not transmitted to or stored on our servers.

Usage Data

We collect anonymous, non-personally identifiable usage events (such as "setting updated" or "notification clicked") to improve stability and usability.

2. Third-Party Data Sharing

We do not sell, rent, or share user data for advertising or marketing purposes. Data is shared only with the following trusted service providers as required for operation:

  • Google APIs: For authentication and fetching calendar events.
  • Gumroad: For license key validation only.
  • PostHog: For anonymous usage analytics.

No third party receives your email content or calendar details.

3. Data Storage

Your settings, cached meeting context, notes, and license keys are stored locally on your device using Chrome's encrypted storage.local API. Prepped does not maintain a proprietary database of your personal calendar or email information.

4. AI & Automated Processing

Prepped does not send email or calendar content to any AI or machine-learning services without explicit user action and consent.

5. User Control & Data Deletion

You may revoke access at any time by uninstalling the extension or revoking permissions via your Google Account settings.

Uninstallation: Upon uninstallation, all locally stored data is permanently deleted from your device.

No Spam: Prepped never sends emails automatically — all emails require explicit user action.

6. Data Security (Data Protection Mechanisms)

We take the security of your data seriously and have implemented industry-standard technical measures to protect the information we process:

  • Encryption in Transit: All data exchanges between the Extension and Google APIs (such as fetching Calendar events) occur over secure, encrypted connections using Transport Layer Security (TLS/SSL).
  • Secure Local Storage: Sensitive data stored on your device utilizes Chrome's sandboxed environment, ensuring it remains inaccessible to unauthorized external websites.
  • Access Controls: As a local-first application, we do not have remote access to your Calendar or Email content. Our internal systems for license validation are protected by strict access controls and multi-factor authentication.

7. Limited Use Disclosure

Prepped's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy , including the Limited Use requirements.

8. Contact

For privacy questions, please contact us at: prepped.extension@gmail.com