Chrome Extension Privacy Policy
Trimlane's Chrome extension reads Gmail to find your subscriptions, then forgets. Nothing we read leaves your device.
The short version: The extension uses read-only Gmail access to detect subscription billing emails. Results are stored locally in your browser and never sent to any server. You export them to the Trimlane iOS app by scanning a QR code on your own screen. No accounts, no tracking, no telemetry.
Last updated: April 10, 2026 · Effective: April 10, 2026
Looking for the iOS app policy? View the Trimlane iOS privacy policy →
Trimlane requests read-only access to your Gmail account via Google OAuth2, using the https://www.googleapis.com/auth/gmail.readonly scope. The extension reads only email metadata — sender addresses, subject lines, and message headers — to identify billing-related emails such as receipts, invoices, and payment confirmations.
The extension never modifies, deletes, drafts, or sends emails on your behalf.
From billing-related emails, Trimlane extracts only the information needed to track a subscription: the service name (for example, Netflix or Spotify), the billing amount and currency, the billing frequency (monthly, annual, etc.), and the next billing date when it is available.
The extension does not collect full email content or message bodies, email attachments, contact lists or address books, sender or recipient email addresses beyond domain matching, or any browsing history or activity outside Gmail. No analytics, telemetry, or tracking data is collected anywhere in the extension.
Detected subscriptions are stored locally in your browser using chrome.storage.local. This data never leaves your device except when you explicitly choose to export it.
When you export, the detected subscriptions are encoded into a QR code displayed on your screen. You scan this QR code with the Trimlane iOS app to import the results onto your phone. The transfer happens locally between your monitor and your phone's camera — no server, intermediary, or network request is involved.
Trimlane's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
The table below covers every third-party service the Chrome extension interacts with and what, if anything, is shared.
| Service | Purpose | Data shared |
|---|---|---|
| Google Gmail API | Read email metadata for subscription detection | Nothing is sent. Access is read-only and scoped to gmail.readonly. You can revoke access at any time from your Google Account permissions. |
| Supabase | Download the service catalog (known subscription service names and domains) used for detection matching | No user data, email content, or personal information is sent. Only the public catalog is downloaded. |
Detection results live in chrome.storage.local and are automatically deleted when you uninstall the extension. We do not maintain any copy on any external server. No user data is retained outside your own browser.
You can revoke the extension's Gmail access at any time from your Google Account permissions. You can clear all locally stored data by uninstalling the extension. You can inspect exactly what the extension has stored at any time by opening the extension's popup, right-clicking, selecting "Inspect", and examining chrome.storage.local in Chrome DevTools.
Trimlane is not directed at children under 13. We do not knowingly collect any information from children.
We may update this policy from time to time. Any changes will be reflected by updating the date at the top. Continued use of the extension after changes constitutes acceptance of the updated policy.
Questions about this policy or the Trimlane Chrome extension's data practices? Reach us at support@trimlane.com.