TATOMA Connected Apps — Privacy Policy
Effective Date: April 18, 2026 Last Updated: April 18, 2026
This privacy policy explains how the TATOMA Prompts browser extension, desktop apps, and other connected applications ("Connected Apps") collect, use, and protect your data. Connected Apps are developed by Tatoma B.V. and provide quick access to your TATOMA prompt libraries outside of the main web platform.
This policy supplements the TATOMA Privacy Policy. For general data handling practices, please refer to that document.
What Are Connected Apps?
Connected Apps are companion applications that let you access your TATOMA prompt libraries from your browser, desktop, or mobile device. They include:
- TATOMA Prompts browser extension (Chrome, Edge)
- TATOMA Prompts macOS desktop app
- TATOMA Prompts Windows desktop app (coming soon)
Data We Collect
Authentication Token
When you sign in to a Connected App, an authentication token is generated and stored locally on your device:
- Browser extension: Stored in Chrome's local storage (
chrome.storage.local) - Desktop apps: Stored in the operating system's secure credential store (macOS Keychain, Windows Credential Manager)
The token is a random string — it does not contain your password, email, or personal information. Tokens expire automatically after 90 days and can be revoked at any time from your Connected Apps settings.
Prompt Data (Cached Locally)
Connected Apps cache your prompt library data locally for fast access and offline use:
- Library names, descriptions, and visibility settings
- Prompt titles, body text, type, and quality metadata
- Recently used prompt history
This data is fetched from the TATOMA platform and stored locally on your device. It is not shared with any third party. Cached data is cleared when you sign out.
Saved Prompts (Browser Extension, v0.1.0+)
When you explicitly save a prompt — whether by clicking "Add prompt" manually, using the "Save as prompt" right-click context menu, or using the contextual "Save from {Platform}" button on a supported AI platform — the extension sends the following to prompts.tatoma.eu:
- The prompt text you typed or captured
- A
creation_originvalue indicating the save surface (e.g.,extension) - A
creation_toolvalue indicating which context you saved from (one of:manual,context-menu,claude,chatgpt,copilot,gemini)
Prompt saves only occur on direct user action — clicking a button or a menu item. Nothing is captured automatically. The creation_origin and creation_tool values help you later identify where a prompt came from inside your library.
Usage Events
When you copy or insert a prompt, the Connected App sends a usage event to the TATOMA platform:
- Which prompt was used (prompt ID)
- What action was taken (copied or inserted)
- Which Connected App was used (browser extension, macOS app, etc.)
- Your user ID and organization ID
These events are used for your organization's usage analytics and are visible in the Prompts app's reports dashboard. They follow the same data retention policy as other platform usage data.
Extraction Failure Telemetry (Browser Extension, v0.1.0+)
When you click "Save from {Platform}" on a supported AI surface but the extension fails to extract your latest prompt (selector drift, closed shadow DOM, page still loading), an anonymised failure event is sent to prompts.tatoma.eu:
platform— which of the four supported AI platforms was affected (Claude, ChatGPT, Copilot, or Gemini)reason— a short failure code (no_match,dom_error,shadow_dom_blocked,page_not_ready)
This event does not include the URL, page content, your prompt text, or any free-text field. It exists solely so we can detect and fix breakage when upstream AI platforms change their page structure.
Language Preference
Your chosen language (English, Dutch, or Danish) is stored locally on your device.
Data We Do NOT Collect
Connected Apps do not collect, access, or transmit:
- Your browsing history as a dataset — the browser extension reads the current tab's URL locally to check whether it matches a fixed allowlist of supported AI platforms, solely to decide whether to show the contextual "Save from {Platform}" button. URLs are never logged, stored, or transmitted to our servers or any third party.
- Content of web pages you view — except when you click "Save from {Platform}" on a site you have explicitly granted capture permission for, in which case only the text of your most recent user message is read from the page and sent to TATOMA with your explicit action (see "Saved Prompts" above).
- Keystrokes, mouse movements, or screen content
- Data from any other browser extensions or applications
- Emails, documents, or files outside the text you explicitly save as a prompt
Browser Permissions
The TATOMA Prompts browser extension requests the following permissions, each tied to a specific function:
| Permission | Purpose |
|---|---|
| activeTab | Inject a content script into the active page when you explicitly invoke the extension (click the icon, use the right-click menu). Used for inserting prompts into text fields and — on supported AI platforms with capture permission granted — reading your latest prompt. Only activates on user gesture. |
| tabs | Read the current tab's URL (hostname only is used) to check whether it matches one of the four supported AI platforms, so the Save button can display "Save from {Platform}" contextually. URLs are matched locally against a fixed allowlist and are never logged, stored, or sent to our servers. Chrome's install prompt phrases this as "Read your browsing history" — that is Chrome's standard label for this permission and cannot be customized. |
| identity | Open a secure browser sign-in window via chrome.identity. No credentials are collected by the extension itself. |
| storage | Store your authentication token, language preference, and a short-lived prompt cache (5-minute TTL) locally. All data is cleared on sign-out. |
| scripting | Inject content scripts on user gesture to (a) place prompt text into focused text fields when you click "Insert" and (b) read the most recent user message from a supported AI platform when you click "Save from {Platform}". Scripts are never injected automatically. |
| sidePanel | Display the extension's UI as a persistent side panel (not a popup). Opens when you click the extension icon or use the context menu. |
| contextMenus | Add two right-click menu items: "Fill with prompt" on text fields (opens the side panel) and "Save as prompt" on selected text (saves it to your library). |
Host access (tatoma.eu) | Communicate with hub.tatoma.eu (authentication) and prompts.tatoma.eu (prompt data, usage events, extraction failure telemetry). No other domains are accessed for data transmission. |
Optional host access (claude.ai, chatgpt.com, copilot.microsoft.com, m365.cloud.microsoft, gemini.google.com) | Requested per site, individually, when you click "Enable capture for {Platform}". Once granted, allows the extension to read your latest prompt text from that specific site when you click "Save from {Platform}". These permissions are opt-in at runtime, never granted at install, and revocable at any time from Chrome's extension settings (chrome://extensions) or from the extension's own Settings pane. |
The extension never reads data from websites other than tatoma.eu, the specific AI platforms you have explicitly granted capture permission for, or the current tab's URL hostname (for contextual detection, as described above).
How We Use Your Data
| Data | Purpose | Stored Where |
|---|---|---|
| Auth token | Authenticate API requests to the TATOMA platform | Locally on your device |
| Cached prompts | Fast search and offline access | Locally on your device |
| Saved prompts (body + creation_origin + creation_tool) | Store in your TATOMA prompt library | TATOMA platform servers |
| Usage events | Organization analytics and reporting | TATOMA platform servers |
| Extraction failure events (platform + reason) | Detect and fix breakage when AI platform DOMs change | TATOMA platform servers |
| Language preference | Display the app in your preferred language | Locally on your device |
| Current tab URL | Locally matched against a fixed allowlist to show contextual UI | Never stored or transmitted |
Data Sharing
We do not sell, rent, or share your data with third parties. Connected Apps communicate exclusively with TATOMA's own servers:
hub.tatoma.eu— Authenticationprompts.tatoma.eu— Prompt data, usage tracking, and extraction failure telemetry
No data is sent to analytics services, advertising networks, or any other external parties.
Data Retention
- Auth tokens expire after 90 days and are automatically invalidated. You can revoke them at any time.
- Local cache is cleared on sign-out. Uninstalling the Connected App also removes all local data.
- Saved prompts are retained in your TATOMA library until you delete them or delete your account.
- Usage and extraction failure events follow the TATOMA platform's standard data retention policy (see Privacy Policy).
Your Rights
Under GDPR, you have the right to:
- Access your data — view your Connected Apps and usage history in the TATOMA platform
- Delete your data — revoke tokens and clear local data by signing out, delete individual saved prompts from your library, or request full account deletion via Manage Data
- Object to processing — contact us at gdpr@tatoma.eu
- Control optional permissions — each AI platform's capture permission can be revoked independently at any time from
chrome://extensionsor the extension's Settings pane. Revoking a permission immediately disables contextual capture for that site.
Security
- Auth tokens are stored in your device's secure credential store (Keychain, Credential Manager, or browser storage)
- All communication uses HTTPS encryption
- Tokens are SHA-256 hashed before server-side storage — even if our database were compromised, raw tokens cannot be recovered
- Each Connected App gets its own token that can be independently revoked
Children's Privacy
Connected Apps are not directed at children under 16. We do not knowingly collect data from children.
Changes to This Policy
We may update this policy from time to time. Changes will be reflected in the "Last Updated" date above. Continued use of Connected Apps after changes constitutes acceptance of the updated policy.
Contact
For privacy questions or to exercise your data rights:
Tatoma B.V. Willemstraat 1 5611 HA, Eindhoven The Netherlands
Email: gdpr@tatoma.eu