Privacy Policy for Spotify AI Song Suggester

Last Updated: January 2025

Data Collection

This extension does not collect, store, or transmit any personal data to external servers operated by the developer.

Local Storage

The extension stores the following data locally in your browser:

Spotify authentication tokens - Stored in Chrome's local storage (chrome.storage.local) for device-specific access. These tokens are used to authenticate API requests to Spotify Web API.
Gemini API key - Stored in Chrome's sync storage (chrome.storage.sync), which is encrypted by Chrome. This is your personal API key that you provide.
User preferences - Number of tracks to analyze (10-100) and number of suggestions to receive (5-20). Stored in chrome.storage.sync.
Cached playlist suggestions - Stored locally in chrome.storage.local for 24 hours to improve performance. Cache automatically expires or can be manually cleared.

Third-Party Services

The extension communicates with the following third-party services:

Spotify Web API (https://api.spotify.com) - Used to fetch playlist data (track names, artists, popularity) and authenticate users via OAuth 2.0.
Spotify Accounts (https://accounts.spotify.com) - Used for OAuth 2.0 authentication flow to connect your Spotify account.
Google Gemini API (https://generativelanguage.googleapis.com) - Used to generate AI-powered song recommendations based on your playlist data.

All API calls are made directly from your browser. The developer does not have access to your data, API keys, or authentication tokens.

Data Usage

Playlist data is only used to generate song recommendations via Google Gemini AI.
No data is shared with third parties except as necessary for the extension to function (Spotify API and Gemini API).
No analytics or tracking services are used.
No data is sold, rented, or monetized in any way.

Your Rights

You can revoke Spotify access at any time through your Spotify account settings.
You can clear all stored data by uninstalling the extension or using the "Clear Cache" button in extension options.
You can remove your Gemini API key at any time from the extension options.

Children's Privacy

This extension is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13.

Contact

For questions about this privacy policy, please contact: [YOUR-EMAIL@EXAMPLE.COM]

Or open an issue on GitHub: [YOUR-GITHUB-REPO-URL]/issues

Note: Replace the placeholders above with your actual contact information before publishing.

Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy periodically.