← Back to Home

Privacy Policy for Mosaic Extension

Last updated: January 20, 2025

Overview

Mosaic is a browser extension that helps you organize and focus on your browser windows through intelligent tiling and focus effects. We offer both free and premium (Pro) features through a subscription service.

Data Collection

Settings Data (Stored Locally)

  • Layout preferences and restrictions based on subscription status
  • Focus effect settings (blur intensity, dim intensity) with limitations for free users
  • Border and color preferences
  • Spotlight settings with default values for free users
  • Global toggle state
  • Active mosaic configurations
  • Window positioning data
  • Theme preferences (dark/light mode)

Subscription Data (Stored in Cloud Database)

  • Email address (for subscription verification)
  • Subscription status and plan information
  • Payment method information (stored securely by Stripe)
  • Device activation status
  • Subscription events and access logs

Usage Data

  • Extension usage analytics for subscription management
  • Function call logs for debugging and support
  • Error reports for service improvement

Data Storage

Local Storage

Extension settings and preferences are stored locally using Chrome's storage API. This includes temporary session data and UI state.

Cloud Storage

  • Supabase Database: We use Supabase to store subscription-related data including user email addresses, subscription status, device activation records, and subscription event logs.
  • Stripe: Payment information is stored and processed by Stripe (our payment processor).

Third-Party Services

Stripe (Payment Processing)

  • Purpose: Secure payment processing and subscription management
  • Data Shared: Email address, payment information, subscription details
  • Privacy Policy: https://stripe.com/privacy
  • Data Location: Stripe's secure servers
  • User Control: Access Stripe Customer Portal to manage payment data

Supabase (Database)

  • Purpose: Secure user and subscription data storage
  • Data Shared: Email addresses, subscription status, device information
  • Privacy Policy: https://supabase.com/privacy
  • Data Location: Supabase cloud infrastructure
  • Encryption: All data encrypted in transit and at rest

Data Usage

Free Features

Your local settings data is used to maintain extension settings between sessions, provide personalized layouts and focus configurations (limited to 4 basic layouts for free users), and restore mosaic setups when you restart your browser. Free users have access to basic focus effects with limited customization and spotlight focus with default settings.

Pro Features & Subscription Management

Your subscription data is used to verify your Pro subscription status, process payments and manage billing, provide access to premium features (including all 8 layouts, advanced customization, and priority support), send subscription-related communications, and provide customer support.

Data Sharing

With Third Parties

  • Stripe: Payment processing and subscription management only
  • Supabase: Secure data storage for subscription information only
  • No Advertising: We do not share data with advertisers
  • No Analytics Services: We do not use Google Analytics or similar tracking services

User Rights & Data Control

Free Users

  • Clear local settings through the extension popup
  • Uninstall the extension to remove all local data
  • Use Chrome's extension data clearing tools

Pro Users

  • Access: View your subscription data via the extension or Stripe Customer Portal
  • Update: Modify payment methods and billing information through Stripe
  • Delete: Cancel subscription and request data deletion
  • Export: Request a copy of your data by contacting support
  • Portability: Data can be provided in standard formats upon request

Data Security

Local Data

Stored using Chrome's encrypted storage system and protected by your device's security measures.

Cloud Data

  • Encryption: All data encrypted in transit (HTTPS/TLS) and at rest
  • Access Controls: Strict access controls and authentication
  • Regular Audits: Security practices regularly reviewed
  • Compliance: SOC 2 compliant infrastructure

Permissions Explained

Mosaic requests the following permissions:

  • tabs: Create and manage browser tabs for tiling layouts
  • windows: Create and position browser windows
  • storage: Save settings and preferences locally
  • system.display: Detect screen size for proper window positioning
  • notifications: Show optional notifications about mosaic status
  • host permissions: Communicate with our API for subscription verification and feature access control

Children's Privacy

Mosaic is not intended for children under 13. We do not knowingly collect personal information from children under 13.

Updates to This Policy

  • We may update this privacy policy from time to time
  • Material changes will be communicated via extension updates
  • Continued use constitutes acceptance of updated policy
  • Previous versions available upon request

Contact & Data Protection Officer

For privacy questions, data requests, or concerns:

  • Email: contactinfo.mosaic@gmail.com
  • Subject Line: Include "Privacy" for priority handling
  • Response Time: We respond within 30 days

Compliance

This policy complies with:

  • General Data Protection Regulation (GDPR)
  • California Consumer Privacy Act (CCPA)
  • Chrome Web Store Developer Program Policies
  • Payment Card Industry Data Security Standards (via Stripe)
  • Other applicable privacy laws

For specific questions about how Stripe handles your payment data, please refer to Stripe's Privacy Policy.