Privacy Policy for Chronicler

Last Updated: November 14, 2025

Overview

Chronicler ("we", "our", or "the extension") is a browser extension that imports calendar files (.ics) into Google Calendar. This privacy policy explains how we collect, use, and protect your information.

Information We Collect

Google Account Information

  • Email address: Used for authentication and identifying your Google Calendar
  • User profile information: Basic profile data from your Google account
  • OAuth tokens: Stored locally in your browser to authenticate with Google Calendar API

Calendar Data

  • Calendar events: Read access to check for duplicates and write access to import events
  • Calendar list: Access to your calendar list to allow you to choose which calendar to import to
  • ICS file content: Processed locally in your browser to extract event data for import

What We Do NOT Collect

  • We do not store calendar events on our servers
  • We do not store ICS file contents on our servers
  • We do not track your usage of the extension
  • We do not collect analytics or telemetry data
  • We do not store your browsing history

How We Use Your Information

We use the collected information solely to:

  • Authenticate your Google account via OAuth 2.0
  • Read your calendar list to present available calendars
  • Check for duplicate events before importing
  • Import calendar events from .ics files to your chosen Google Calendar
  • Maintain your authenticated session locally in your browser

Data Storage and Security

Local Storage

  • OAuth tokens are stored locally in your browser using Chrome's extension storage API
  • No data is transmitted to or stored on our servers
  • All calendar data processing happens entirely in your browser

Google Calendar API

  • We use Google Calendar API to read and write calendar events
  • All communication with Google uses encrypted HTTPS connections
  • We follow Google's API usage policies and security best practices

OAuth Scopes

Chronicler requests the following OAuth scopes from Google:

  • calendar.events - Create, read, update, and delete calendar events
  • calendar.readonly - View calendars and calendar settings
  • userinfo.email - View your email address
  • userinfo.profile - View your basic profile information

Third-Party Services

Google Calendar (Google)

Chronicler integrates with Google Calendar API for:

  • OAuth authentication
  • Reading calendar list and events
  • Creating new calendar events

Google's privacy policy applies to all data handled by Google Calendar API. For more information, visit: https://policies.google.com/privacy

No Other Third Parties

  • We do not share your data with any third parties other than Google Calendar API
  • We do not sell or trade your data
  • We do not use your data for advertising
  • We do not analyze your calendar events for any purpose other than importing them

Your Rights

You have the right to:

  • Revoke access: Disconnect Chronicler from your Google account at any time through Google account settings
  • Delete local data: Uninstalling the extension removes all locally stored OAuth tokens
  • Control calendar access: Choose which calendar to import to and review events before import
  • Cancel imports: Stop any in-progress import operation

Data Retention

  • OAuth tokens: Stored locally until you sign out or uninstall the extension
  • Calendar events: Only accessed through Google Calendar API, never stored by Chronicler
  • Extension uninstall: All local data is automatically deleted when you uninstall the extension

File Processing

  • ICS files are processed entirely in your browser
  • File contents are never uploaded to our servers
  • Event data is extracted and sent directly to Google Calendar API
  • No copy of your ICS file or its contents is retained after import completes

Security Measures

  • OAuth 2.0 authentication with Google
  • Encrypted HTTPS connections for all API requests
  • Local-only token storage using browser extension APIs
  • No server-side data storage or processing
  • Input validation to prevent malicious file processing
  • File size and event count limits to prevent abuse

Children's Privacy

Chronicler is not intended for use by children under 13. We do not knowingly collect information from children under 13. The extension requires a Google account, which has its own age requirements.

Changes to This Policy

We may update this privacy policy from time to time. We will notify users of significant changes by:

  • Updating the "Last Updated" date at the top of this policy
  • Posting a notice in the extension for material changes

Contact Us

If you have questions about this privacy policy or how your data is handled, please contact us through the About page.

Open Source

Chronicler's code is available for review. You can examine exactly how the extension handles your data and verify that it operates as described in this privacy policy.

Legal Basis for Processing (GDPR)

For users in the European Economic Area, our legal basis for processing your data is:

  • Consent: By authenticating with Google and using the extension, you consent to this privacy policy
  • Contractual necessity: To provide the calendar import service you've requested
  • Legitimate interest: To maintain and improve the extension's functionality

Your California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

  • Know that we do not collect or store your personal information on our servers
  • Delete local data by uninstalling the extension
  • Opt-out of any sale of personal information (note: we do not sell personal information)

Chronicler is designed with privacy as a core principle. All processing happens locally in your browser, and we only interact with Google Calendar API to import your events. Your calendar data remains under your control.