AutoFill Pro — Privacy Policy

Last updated: April 16, 2026

    Summary: AutoFill Pro stores all data locally on your device. We do not collect, transmit, or share any personal information. No analytics, no tracking, no servers.
  

1. Data Storage

All data you enter (autofill rules, profiles, variables, text clips, settings) is stored exclusively in your browser's local storage using the chrome.storage.local API. This data never leaves your device.

2. Data Collection

AutoFill Pro does not collect any data. Specifically, we do not collect:

Personal information (name, email, address)
Browsing history or visited URLs
Form data you fill on websites
Usage analytics or telemetry
Crash reports

3. Website Access

AutoFill Pro requires access to websites (http/https) to function — it needs to read form field attributes on pages and fill them with your configured rules. The extension:

Reads form field attributes (name, id, placeholder, label, ARIA attributes) to match your rules to the right fields
Only writes values you have explicitly configured into matching fields
Does not read page text, cookies, or stored passwords from websites during normal autofill
When you explicitly invoke "Capture field" or "Capture form" from the right-click menu or side panel, the extension reads the values currently in those fields so you can save them as rules — this happens locally on your device and is never transmitted
Does not inject ads, trackers, or third-party scripts

4. At-Rest Encoding for Password Values

Password values you mark as "encrypted" are encoded using AES-GCM (256-bit) via the Web Crypto API before being saved to chrome.storage.local. The key is deterministically derived from the extension's installation ID, so it can be regenerated by the extension itself when reading the value back.

What this protects against: casual inspection of the stored data (e.g., someone glancing at exported storage JSON or browsing the extension's storage in DevTools).

What this does NOT protect against: a determined attacker with access to your browser profile and knowledge of the algorithm — because the key derivation is deterministic and the extension ID is public, the encoding is closer to obfuscation than true secret-key encryption. For high-value secrets, use a dedicated password manager.

5. Third-Party Services

AutoFill Pro does not communicate with any external servers, APIs, or third-party services. The extension works entirely offline after installation.

6. Data Deletion

You can delete all stored data at any time via the "Factory Reset" option in Settings. Uninstalling the extension also removes all stored data from your browser.

7. Permissions Justification

storage — Save your autofill rules, profiles, and settings locally
contextMenus — Add right-click menu options (Fill page, Add rules, etc.)
sidePanel — Provide a side panel for quick access to profiles and actions
host_permissions (http/https) — Required to run the content script on web pages containing forms

8. Changes to This Policy

If we make changes to this privacy policy, we will update the "Last updated" date above. Continued use of the extension after changes constitutes acceptance of the updated policy.

9. Contact

For questions about this privacy policy or the extension, please open an issue on our support page or contact us through the Chrome Web Store listing.