Welcome! This privacy policy explains how the GitTrack Chrome Extension collects, uses, stores, and protects your data.
We believe in privacy by design and transparency. GitTrack is built to work primarily on your device, with optional cloud features that you can choose to enable.
1. Data We Collect
1.1 Local Data (Stored on Your Device Only)
The extension collects and stores the following information locally on your computer using Chrome's storage API:
| Data Type | What We Collect | Purpose |
|---|---|---|
| Job Applications | Company name, job title, location, description, application URL, application date, status (applied/interviewing/rejected/accepted) | To track your job applications and display them in your dashboard |
| Interview Details | Interview rounds, formats, dates, and notes | To help you manage interview schedules |
| Rejection Information | Rejection reason, rejection date | To track patterns and learn from rejections |
| Offer Details | Salary, start date, acceptance date | To manage job offers you've received |
| User Preferences | Dashboard layout, column preferences, streak goals, freeze usage | To personalize your experience |
| Activity Log | Recent actions (last 100 activities) | To show your recent tracking activity |
chrome.storage.local, which means it stays on your device and is never automatically sent to any server. We (the developers) have absolutely no access to this data.
1.2 Optional Data (Synced to Cloud Only If You Enable Social Features)
If you choose to enable social features by providing your email address, the following aggregate statistics only are synced to our Supabase backend:
| Data Type | What We Sync | Purpose |
|---|---|---|
| Email Address | Your email (used as identifier) | To enable social features and identify your account |
| Application Statistics | Count of total applications, rejections, interviews, and accepted offers | To show global statistics and enable friend comparisons |
| Streak Data | Daily application count, current streak, longest streak, freeze usage, last 5 days of history | To enable streak sharing with friends and gamification features |
| Activity Timestamps | Last active timestamp, last sync timestamp | To show who's currently online and maintain sync state |
| Display Name | Optional display name for social features | To show your name to friends (if you choose to add friends) |
| Community Alerts | Job postings or product recommendations you share | To enable the community alerts feature |
2. How We Use Your Data
2.1 Local Processing
- Job Tracking: To save and display your job applications across multiple platforms (LinkedIn, GitHub, JobRight, Simplify)
- Duplicate Detection: To prevent you from applying to the same job twice
- Dashboard Visualization: To show statistics, charts, and activity feeds
- Status Management: To track progression through application stages
2.2 Cloud Features (Optional)
- Global Statistics: To show you how your stats compare to the community
- Streak Tracking: To enable streak sharing with friends
- Community Alerts: To share and receive job postings and product recommendations
- Admin Features: For authorized super users to moderate community alerts
3. Data Scraping from Job Platforms
GitTrack automatically scrapes job information from the following platforms when you interact with job postings:
- LinkedIn: Company name, job title, location, description, application URL
- GitHub: Job listings from internship repositories
- JobRight: Company name, job title, location, description
- Simplify: Company name, job title, location, description, ATS links
4. Permissions Explained
The extension requests the following Chrome permissions:
| Permission | Why We Need It |
|---|---|
storage |
To save your job application data locally on your device |
tabs |
To detect when you're on a job site and to open the tracker dashboard |
webNavigation |
To track navigation between job pages and detect when applications are submitted |
scripting |
To inject content scripts that add tracking buttons and detect duplicates |
Host Permissions:linkedin.comjobright.aisimplify.jobsgithub.com |
To access and scrape job data from these specific platforms |
5. Third-Party Services
5.1 Supabase (Cloud Backend)
When you enable social features, we use Supabase as our cloud database provider to store:
- Your email address
- Aggregate statistics (counts only, not individual jobs)
- Streak data (last 5 days)
- Community alerts you create
Supabase Privacy: Supabase is SOC 2 Type II compliant and uses enterprise-grade security. Data is encrypted in transit (TLS) and at rest. Read more: https://supabase.com/privacy
5.2 No Other Third Parties
GitTrack does not use:
- ❌ Analytics services (Google Analytics, Mixpanel, etc.)
- ❌ Advertising networks
- ❌ Error tracking services
- ❌ Any other third-party data processors
6. Data Security
6.1 Local Data
Your local job data is protected by Chrome's built-in security features. It's as secure as your computer and Chrome profile. We recommend:
- Using a strong password for your computer
- Keeping Chrome up to date
- Not sharing your computer with untrusted users
6.2 Cloud Data (Optional Features)
- Authentication: JWT tokens with HMAC-SHA256 signatures
- Encryption: All data transmitted to Supabase is encrypted using TLS 1.3
- Data Validation: Server-side validation prevents unauthorized access
- Rate Limiting: Protects against abuse and ensures fair usage
7. Data Retention
7.1 Local Data
Local data is stored indefinitely until you:
- Manually delete jobs from the tracker
- Use the "Export/Import Data" feature to clear all data
- Uninstall the extension
7.2 Cloud Data (Optional Features)
- User Statistics: Retained for 6 months from last activity
- Streak Data: Retained for 6 months from last sync
- Community Alerts: Retained for 6 months from creation date
- Automatic Cleanup: Inactive accounts are automatically purged after 6 months
8. Your Rights and Choices
8.1 Opt-In to Social Features
Social features are completely optional. You can use GitTrack without ever providing an email address. To enable social features:
- Open the GitTrack dashboard
- Click on Settings
- Enter your email address
8.2 Disable Social Features
To stop syncing data to the cloud:
- Open Settings
- Remove your email address
Note: This stops future syncing but does not delete previously synced data from Supabase (see section 8.4).
8.3 Export Your Data
You can export all your local job data at any time:
- Click the extension icon
- Click "Export Data"
- Save the JSON file to your computer
8.4 Data Deletion
- Local Data: Delete individual jobs from the tracker, or uninstall the extension to remove all local data
- Cloud Data: Currently, there is no automated self-service deletion. Cloud data will be automatically purged after 6 months of inactivity. If you need immediate deletion, please contact us (see section 11)
9. Children's Privacy
GitTrack is designed for job seekers, typically college students and professionals. We do not knowingly collect data from children under 13. If you believe a child has provided us with personal information, please contact us immediately.
10. Changes to This Policy
We may update this privacy policy from time to time to reflect:
- New features or functionality
- Changes in legal requirements
- Improvements to our privacy practices
When we make changes:
- We'll update the "Effective Date" at the top of this page
- For major changes, we'll notify users through the extension
- Continued use of the extension after changes constitutes acceptance
11. Contact Us
If you have questions, concerns, or requests regarding this privacy policy or your data, please contact us:
Developer: RJ45
Email: rajanaha@usc.edu
12. Additional Information
12.1 Open Source
GitTrack's source code may be made available for inspection. This transparency allows security researchers and users to verify our privacy claims.
12.2 No Sale of Data
We never sell, rent, or trade your personal information to third parties. Period.
12.3 Community Features
When you share community alerts (job postings or product recommendations), this information is visible to all GitTrack users. Please do not include sensitive personal information in alerts.
Last reviewed and updated: December 12, 2025