Back to home

Privacy Policy

Last updated: June 5, 2026

TriggerNote is local-first. The free extension keeps everything on your device. Pro sync is optional — this policy explains exactly what changes when you turn it on, and what we do and don't do with your data.

Free tier — 100% local

If you never create an account, TriggerNote makes no network requests and sends nothing anywhere. The notes you create — their titles, triggers (URL patterns), and messages — are stored only on your device using the browser's chrome.storage.local API.

The content script reads the current tab's URL locally to compare it against your saved triggers and render a matching note as an on-page overlay. URLs and page content are evaluated on your device and are never transmitted.

Pro tier — optional cloud sync

Pro adds an account so your notes stay in sync across your browsers and devices. It is strictly opt-in: syncing only happens after you create an account and subscribe.

Account

Authentication is handled by Supabase Auth. We store your email address and an authentication record. Your password is hashed by Supabase — it is never stored in, or visible to us as, plain text.

Synced notes

When sync is on, your notes (titles, triggers, messages, and enabled state) are stored as rows in our Supabase database so they can reach your other devices. They are:

  • encrypted in transit (TLS) and at rest (Supabase storage encryption), and
  • isolated per account by Postgres Row Level Security, so no other user can read them.
TriggerNote Pro is not end-to-end encrypted. Your notes are stored as ordinary database rows, which means we and our infrastructure provider (Supabase) are technically able to access them in order to operate and support the service. We do not read them except as needed to run the service, and we never sell or share them. If you need a guarantee that no one but you can ever read a note, keep sync off and use the free, local-only tier.

Billing

Payments are processed by Stripe. When you upgrade, we create a Stripe customer using your email and store only your Stripe customer/subscription identifiers and your subscription status — never your card details, which go directly to Stripe. See Stripe's privacy policy for how they handle payment data.

What we never do

  • No analytics, advertising, or behavioral tracking.
  • No selling or sharing of your data with third parties.
  • No remote code — the extension runs only the code shipped in its package.

Where your data lives

DataFree tierPro tier
NotesYour device onlyYour device and Supabase (your account)
EmailSupabase Auth
Payment infoStripe (we never see card data)

Deleting your data

  • Notes: delete them in the popup (this removes them locally and, if sync is on, from the cloud too), or uninstall the extension to clear all local data.
  • Subscription: cancel anytime via Manage billing (the Stripe Customer Portal). Canceling stops cloud sync; your local notes remain on your device.
  • Account: to permanently delete your account and all associated cloud data, contact us at the address below.

Changes to this policy

We'll update the "Last updated" date above whenever this policy changes.

Contact

Questions about this policy or data requests: dagimshimelis1992@gmail.com