Privacy Policy for Block My Focus Time Chrome Extension

Last updated: December 2025

1. Introduction

This Privacy Policy describes how the Block My Focus Time Chrome Extension (“the Extension”, “we”, “us”) collects, uses, and protects your data. By installing and using the Extension, you agree to the practices described here.

2. Data We Collect

2.1 Extension User ID (Anonymous Identifier)

The Extension generates a random anonymous identifier (“extension_user_id”) and stores it locally in your browser. This ID is used only for:

• Identifying your subscription status (Free or Pro)
• Allowing access to Pro features after a subscription purchase
• Preventing abuse of the subscription system

This ID is not tied to your real identity and cannot identify you personally.

2.2 Google Calendar Data (Only with Your Permission)

If you choose to connect your Google Calendar, we request a Google OAuth token with read-only access to your calendar events. We use this strictly to:

• Read upcoming and ongoing events in your primary calendar
• Detect whether there is a current event that matches your focus keywords (e.g. “[Focus]”, “Deep Work”)

We do not:

• Store your calendar events on our servers
• Upload event details to any external service
• Modify, delete, or create calendar events

All Google Calendar processing happens locally inside your browser or on your device via the Chrome Extension.

2.3 Data Stored Locally

The following data is stored only on your device using Chrome storage:

• Focus keywords
• Blocked websites list
• Whether focus mode is currently active
• Whether you have authenticated with Google
• Your cached subscription plan (Free or Pro)

This local data is not sent to our servers, except for the anonymous subscription identifier as described below.

2.4 Subscription Data (Only for Pro Users)

If you upgrade to a Pro subscription via Polar Checkout, Polar sends a webhook to our backend (hosted on Supabase) containing:

• Your anonymous extension_user_id (if provided as metadata)
• Your Polar customer and subscription identifiers
• Subscription status (e.g. trialing, active, canceled)
• Billing email address (managed primarily by Polar for billing purposes)

We store this information securely in Supabase in order to verify your subscription and unlock Pro features inside the Extension.

We do not store:

• Payment card numbers
• Full billing details beyond what Polar shares in the webhook
• Any sensitive financial information

All payments are processed entirely by Polar. We do not process payments ourselves.

3. How We Use Your Data

3.1 Providing Extension Functionality

We use data only as needed to:

• Check Google Calendar events to detect focus sessions
• Block selected websites during active focus sessions
• Save your preferences and settings locally

3.2 Enabling Pro Features

For Pro users, we use subscription data to verify that your subscription is valid and to enable Pro-only controls such as custom keywords and additional blocked sites.

3.3 No Tracking or Advertising

We do not use your data for tracking, analytics, advertising, or profiling.

4. Data Sharing

We do not sell or rent your personal data.

Data is shared only with:

• Polar – for subscription and billing management
• Supabase – for secure storage of subscription status

We never share your Google Calendar event data with any third party.

5. Data Security

We use modern security practices to protect your data, including:

• HTTPS-only communication
• Access control and secure keys for backend services
• Limiting required permissions to the minimum needed

6. Data Retention and Deletion

6.1 Local Data

All data stored locally by the Extension is removed automatically when you uninstall the Extension from your browser.

6.2 Subscription Data

You may request deletion of your subscription record from our servers by contacting us at: shimonlazimi24@gmail.com. We will delete your subscription data within 30 days, except where we are required to retain certain records for legal or accounting purposes.

7. Children’s Privacy

The Extension is not intended for children under 13 years old and we do not knowingly collect information from children.

8. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page.

9. Contact Us

If you have any questions or requests regarding this Privacy Policy, please contact:

Owner: Shimon Lazimi
Email: shimonlazimi24@gmail.com