Privacy Policy — HubSpot AI Analyst

Last updated: July 11, 2026

This Privacy Policy explains how the Chrome extension "HubSpot AI Analyst" (the "Extension") handles your information. The Extension is a free tool that detects HubSpot CRM records related to the web page you are viewing, generates AI summaries, and lets you log activities to HubSpot.

1. Information We Handle

Data Where it is stored / sent Purpose
HubSpot OAuth tokens Stored on our secure server (Google Firebase / Cloud Functions). Never stored in the browser. To read your HubSpot CRM records and create notes, deals, meetings, contacts, and companies at your request.
Your AI provider API key (Anthropic, OpenAI, or Google) Stored only locally in your browser (chrome.storage.local). Never sent to our servers. To call the AI provider you choose, using your own account.
Current page context (domain name, company name from page metadata, LinkedIn profile name) Sent to the HubSpot API to search for matching records. Not stored on our servers. To detect whether the page you are viewing relates to a company or contact in your CRM.
CRM record data (contact names, emails, deal information, notes) Retrieved from HubSpot and, when you request an AI summary or generation, sent directly from your browser to the AI provider you selected. Not stored on our servers. To generate summaries and drafts you explicitly request.
Extension settings (selected AI provider, panel position) Stored only locally in your browser. To remember your preferences.

2. What We Do NOT Do

3. Third-Party Services

4. Data Retention and Deletion

5. Security

OAuth token exchange is performed over HTTPS via Google Cloud Functions. HubSpot client secrets are kept server-side only and never included in the Extension. Communication with HubSpot and AI providers uses TLS encryption.