Privacy Policy

Effective date: February 13, 2026

This privacy policy describes how Ziptype ("the Extension") collects, uses, and shares user data. Ziptype is a Google Chrome browser extension that provides text expansion and snippet management. Users define custom shortcut triggers that are automatically replaced with predefined text blocks as they type in any text field on any website.

Ziptype does not collect, transmit, or share any personal or sensitive user data with any server, third party, or external service. All data is stored exclusively on your local device. The Extension operates entirely offline and makes zero network requests.

Data collection, use, and sharing

Ziptype stores only the content you explicitly create and your display preferences. This data is used solely to provide the Extension's text expansion functionality and is never shared with any third party.

  • Shortcuts: Trigger keywords and expansion text you create. Used to perform text replacement when you type a trigger.
  • Folders: Folder names and hierarchy you define. Used to organize your shortcuts within the Extension's popup interface.
  • UI preferences: Popup width, popup height, and compact mode setting. Used to preserve your display customizations.
  • UI state: Folder collapsed/expanded state. Used to maintain the interface layout between sessions.

All data is stored locally using chrome.storage.local on your device. No personally identifiable information is collected or stored. No data is shared with any third party. Internal identifiers are generated client-side using non-trackable, non-identifiable random values.

Data accessed temporarily

To provide its core text expansion functionality, Ziptype temporarily accesses certain data in memory. This data is never persisted, logged, or transmitted.

  • Text near cursor in active input fields: Only the last few characters before the cursor are checked in-memory to detect if you typed a shortcut trigger. This text is not stored or transmitted.
  • System clipboard (read): Used only when you initiate a paste action within the Extension's popup to paste previously copied Ziptype shortcut data. Not stored or transmitted.
  • System clipboard (write): Used only when you initiate a copy action within the Extension's popup to copy selected shortcuts. Not transmitted externally.

Ziptype does not log, record, or transmit keystrokes. The content script only checks whether the most recent characters typed match a user-defined shortcut trigger. No keystroke data is persisted or sent anywhere.

What Ziptype does not do

  • Does not collect, transmit, or share any user data with any server, third party, or external service.
  • Does not make any network requests of any kind.
  • Does not include any analytics, telemetry, crash reporting, or usage tracking.
  • Does not load any external scripts, stylesheets, fonts, images, or resources.
  • Does not use cookies, localStorage, sessionStorage, or IndexedDB.
  • Does not access browsing history, bookmarks, downloads, or any other browser data.
  • Does not collect or use web browsing activity.
  • Does not read, log, or store the content of web pages you visit.
  • Does not access geolocation, camera, microphone, or any device sensors.
  • Does not access or interact with your Google account or Chrome profile data.
  • Does not publicly disclose any financial, payment, or authentication information.
  • Does not transfer, sell, or use data for personalized advertisements, credit-worthiness, or lending purposes.

Use of permissions

Ziptype requests only the narrowest permissions necessary to implement its features. No permission is requested for future or unimplemented functionality.

  • storage: Required to read and write your shortcuts, folders, and preferences to chrome.storage.local. This is the only storage mechanism the Extension uses.
  • clipboardRead: Required to read the system clipboard when you paste shortcut data within the Extension's popup interface.
  • clipboardWrite: Required to write to the system clipboard when you copy shortcuts from the Extension's popup interface.
  • Host permissions (<all_urls>): Required so the content script can run on all websites, enabling text expansion in any text field. The content script only monitors input fields for shortcut trigger matches and performs local text replacement.

How the content script works

Ziptype injects a content script into web pages to enable text expansion:

  1. Attaches a single input event listener to the document.
  2. When you type in any text field, the script reads only the characters immediately before the cursor (up to the length of the longest saved trigger) to check for a shortcut match.
  3. If no match is found, the script takes no action and stores nothing.
  4. If a match is found, the trigger text is replaced with the expansion text locally in the page's DOM. Synthetic input events are dispatched so the page's framework detects the change.

The content script does not modify any other part of the page, does not inject any UI elements, and does not interact with the page beyond text replacement in the active input field.

Limited use disclosure

Ziptype's use of information received from Chrome APIs adheres to the Chrome Web Store User Data Policy, including the Limited Use requirements. Specifically:

  • Ziptype uses data only to provide and improve its single purpose: text expansion and snippet management.
  • Ziptype does not transfer user data to any third party.
  • Ziptype does not use or transfer user data for personalized advertisements.
  • Ziptype does not sell user data to third parties, advertising platforms, data brokers, or information resellers.
  • Ziptype does not use or transfer user data to determine credit-worthiness or for lending purposes.
  • No human reads user data, as all data remains on the user's local device and is never transmitted.

Data security

Since Ziptype makes zero network requests and never transmits data off your device, the risk of data interception during transmission does not apply. All user-created data resides exclusively in chrome.storage.local, which is managed and sandboxed by the Chrome browser. No financial, payment, or authentication information is collected or stored by the Extension.

Third-party services

Ziptype uses no third-party services, libraries, frameworks, or external dependencies of any kind. The Extension is built entirely with vanilla JavaScript, HTML, and CSS. No external fonts, icons, or assets are loaded. No user data is shared with any third party.

Data portability

You have full control over your data at all times:

  • Export: Export all your shortcuts and folders as a JSON file at any time.
  • Import: Import data from a JSON file, with options to merge with or replace existing data.
  • Copy/Paste: Copy and paste shortcuts between Ziptype instances via the system clipboard.

Data retention and deletion

  • All data persists in chrome.storage.local until you explicitly delete it or uninstall the Extension.
  • Uninstalling the Extension automatically removes all stored data.
  • You can delete individual shortcuts, folders, or all data at any time from within the Extension.
  • There is no server-side data retention because no data is ever transmitted.

Children's privacy

Ziptype does not knowingly collect any personal information from anyone, including children under the age of 13. Since the Extension collects no personal data whatsoever, no special provisions for children's data are necessary.

Changes to this policy

We may update this privacy policy from time to time. Any changes will be reflected on this page with an updated effective date. Continued use of the Extension after any changes constitutes acceptance of the updated policy.

Contact

If you have any questions or concerns regarding this privacy policy, please open an issue on our GitHub repository.

© 2026 Ziptype