Privacy Policy
Image Size Inspector is built around a simple principle: the extension should know as little about you as possible. Here’s exactly what the extension and this website do — and don’t do — with your data.
The short version
- checkThe Chrome extension collects zero personal data. Every image inspection and color pick happens locally in your browser.
- checkYour recent picked colors are saved on your device only — never transmitted, never synced, wiped on uninstall.
- checkThis website uses standard analytics and advertising tools, listed below in plain language.
- checkWe never sell or rent your personal information.
- checkYou have rights under GDPR (EU) and CCPA (California). Section 9 explains how to use them.
1. Scope of this policy
This Privacy Policy describes how Image Size Inspector (“we,” “us,” “our”) handles information when you:
- Install or use the Image Size Inspector Chrome extension (the “Extension”)
- Visit this website at imageinspect.netlify.app (the “Website”)
The Extension and the Website have very different privacy footprints. The Extension is privacy-first by design and collects nothing. The Website uses standard analytics and advertising tools to understand visitor traffic and to help fund development. Both are described separately below so you can see exactly what happens in each context.
2. Privacy in the extension
The Image Size Inspector Chrome extension does not collect, transmit, store, sell, or share any personal data.
When you right-click an image and choose “Inspect with Image Size Inspector,” the extension reads the image’s URL, fetches its bytes from the website you’re already viewing (the same request your browser already made), and decodes the bytes locally to compute file size, color profile, and a color palette. Nothing leaves your device.
When you use the screen color picker, the native EyeDropper API built into Chrome samples a pixel on your screen. The HEX code is copied to your clipboard and appended to a local recent-colors list. Again, nothing leaves your device.
3. Extension permissions, explained
Chrome lists the permissions an extension requests at install time. Here’s exactly why each one is needed:
contextMenus
activeTab
scripting
storage
chrome.storage.local — up to 10 entries — so the toolbar popup can display them across browser sessions. Local-only, never synced.host_permissions: <all_urls>
fetch() image bytes from the image’s existing origin on user-triggered actions. No background network requests, no passive page reads.The extension does not request: webRequest, cookies, history, bookmarks, tabs, identity, downloads, notifications, geolocation, or any other privacy-sensitive permission.
4. Local data on your device
The only data the extension stores is your recent picked colors list from the screen color picker. This list:
- Lives in
chrome.storage.localon your device - Holds at most 10 HEX color codes (e.g.
#F25C2B) - Is never synced to your Google account or other devices
- Is never transmitted to any server — we don’t operate any
- Can be cleared anytime via the “clear” button in the toolbar popup
- Is automatically deleted when you uninstall the extension
No analytics identifiers, user IDs, settings, history, telemetry, error reports, or other data are stored.
5. Privacy on this website
Unlike the extension, the Website (imageinspect.netlify.app) is a regular marketing site and uses standard third-party services to understand visitor traffic and serve advertising that helps fund development. Specifically:
- Google Analytics 4 (GA4) — aggregate visitor counts, pages viewed, country, device class. Sets cookies to identify unique sessions.
- Microsoft Clarity — records anonymized session interactions (clicks, scroll, mouse movement) to help us see how visitors navigate.
- Google Tag Manager — a tag container that loads the analytics scripts. Does not collect data itself.
- Google AdSense — may display advertisements on this site. Google uses cookies to serve personalized ads.
- Netlify — hosts the website. Processes standard server logs (IP, timestamp, user-agent) for security and performance.
- Google Fonts API — loads the Outfit, Poppins, and Material Symbols Outlined fonts. Google may log the request IP.
We do not have direct access to raw visitor data — only the aggregate reports the services above provide. We never combine or sell this data.
6. Cookies & tracking on the website
The Website uses the following cookie categories. These apply only to the website — the extension itself doesn’t use cookies.
- Strictly necessary: None.
- Analytics cookies: Set by Google Analytics (
_ga,_ga_*) and Microsoft Clarity (_clck,_clsk) to count unique visitors and record session behaviour. - Advertising cookies: Set by Google AdSense (
__gads,__gpi) to serve and frequency-cap personalized ads.
You can disable cookies in your browser settings. To opt out of personalized advertising specifically, visit Google’s Ads Settings.
7. Third-party services
Each third-party service has its own privacy policy:
- Google (Analytics, Tag Manager, AdSense, Fonts, Material Symbols) — policies.google.com/privacy
- Microsoft Clarity — privacy.microsoft.com
- Netlify — netlify.com/privacy
8. Data retention & security
Extension data
Your recent picked colors are stored on your device until you clear them or uninstall the extension. There is no remote backup, no recovery, and no copy held by us — because we never receive the data in the first place.
Website analytics data
Visit analytics are retained by the third-party providers according to their own retention policies. Google Analytics 4 defaults to 2 months for user-level data and 14 months for event-level data. Microsoft Clarity retains session recordings for up to 30 days.
Security
The Website is served over HTTPS by Netlify with industry-standard TLS encryption. The extension itself is protected by Chrome’s built-in extension sandboxing and our Manifest V3 architecture (Shadow DOM isolation, Content Security Policy locking, minimum-permission scope).
9. Your rights
European Economic Area, United Kingdom, Switzerland (GDPR)
If you are located in the EEA, UK, or Switzerland, you have the right to:
- Access any personal data we hold about you
- Have inaccurate personal data corrected
- Request deletion (the “right to be forgotten”)
- Restrict or object to certain processing
- Receive your personal data in a portable format
- Withdraw consent at any time
- Lodge a complaint with your local data protection authority
The extension itself collects no personal data, so these rights primarily concern data processed by the third-party services on the Website (Section 5).
California residents (CCPA / CPRA)
If you are a California resident you have the right to:
- Know what personal information is collected, used, or disclosed
- Request deletion of your personal information
- Opt out of any “sale” or “sharing” of personal information — we do not sell or share in the CCPA sense
- Non-discrimination for exercising any of these rights
To exercise any right above, email us at the address in Section 12. We will respond within 30 days.
10. Children’s privacy
The Extension and the Website are not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided personal information to us (or to a third-party service on this Website), please contact us so we can investigate and ensure deletion where applicable.
11. Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our practices, new features in the Extension, or new legal requirements. When we do, we will:
- Update the “Last updated” date at the top of this page
- Post the revised policy at this same URL
- For material changes, post a brief notice on the Website’s home page
12. Contact us
Questions about this Privacy Policy, the Extension, or how your data is handled? We respond to every email.
