This privacy policy describes how the Nuance Agent Chrome Extension ("Extension," "we," "our") collects, uses, and protects data. The Extension is an internal tool developed by and intended solely for use by authorized Nuance Dev team members.
1. Overview
The Nuance Agent Chrome Extension is a productivity tool that integrates with the Nuance OS platform (os.nuance.dev) to help team members manage tasks, notes, client information, and communications directly from their browser. This policy applies to all users of the Extension.
2. Data Collection
2.1 Data We Collect
The Extension collects only the minimum data necessary to function:
- Authentication credentials — Email and session tokens used to verify your identity with Nuance OS APIs.
- Page context data — When explicitly invoked by the user, the Extension may read content from the active browser tab (e.g., selected text, page URL, or page content) to facilitate actions such as creating tasks, drafting emails, or extracting information.
- User preferences — Local settings related to Extension configuration (e.g., display preferences, default behaviors).
2.2 Data We Do NOT Collect
- Browsing history or activity on tabs where the Extension is not actively invoked
- Cookies or tracking identifiers from third-party websites
- Keystrokes, form inputs, or passwords outside the Extension's own interface
- Personal files or documents unless explicitly shared by the user through the Extension
- Analytics, telemetry, or usage tracking data sent to third parties
3. Authentication & Permissions
- The Extension requires login to access Nuance internal APIs hosted at os.nuance.dev.
- Authentication is performed via secure HTTPS connections.
- Session tokens are stored locally in Chrome's secure storage (chrome.storage) and are used solely to maintain your authenticated session.
- No passwords are stored locally at any time.
- Tokens are automatically invalidated upon logout or extension removal.
4. Data Transmission
- All communication between the Extension and Nuance OS servers occurs over encrypted HTTPS connections.
- Data sent to and received from os.nuance.dev is limited to what is necessary for the Extension's intended functionality, including but not limited to:
- Task creation, retrieval, and updates
- Note management
- Client and contact lookups
- Email draft creation (via connected Gmail accounts)
- AI-assisted responses and actions
- No data is transmitted to any third party. All data flows exclusively between the Extension and Nuance-controlled infrastructure.
5. Data Storage
- Local storage: The Extension stores session tokens and user preferences locally using Chrome's built-in storage APIs. No personal data or client information is cached locally.
- Server-side storage: Data processed through the Extension (tasks, notes, etc.) is stored on Nuance OS servers in accordance with Nuance's internal data management policies.
- Retention: Local session data is retained only for the duration of an active session and is cleared upon logout, session expiration, or extension removal.
6. Browser Permissions
The Extension requests the following browser permissions:
Permissions
Permission
Purpose
storage
Store session tokens and user preferences locally using Chrome's storage APIs
tabs
Access tab metadata (URL, title) to provide page context when the user invokes the Extension
cookies
Manage authentication cookies for maintaining secure sessions with Nuance OS
sidePanel
Display the Extension's interface in Chrome's built-in side panel
scripting
Inject content scripts into web pages to read page content when explicitly invoked by the user
Host Permissions
Host Pattern
Purpose
*://*/* (all URLs)
Enable the Extension to read page content on any site the user is viewing when they invoke it (e.g., extracting email content, reading a webpage for task creation)
*://mail.google.com/*
Facilitate Gmail integration for email-related features such as drafting and reading emails
http://localhost/*
Support local development and testing environments
Why broad host access? The Extension requires *://*/* host permissions because its core functionality involves reading content from whatever page the user is currently viewing — across any website — when they explicitly invoke the Extension. The Extension does not run automatically on any page, monitor browsing activity, or inject content without user action. Page data is only accessed on-demand and is transmitted solely to Nuance-controlled servers.
7. Third-Party Services
The Extension does not integrate with, send data to, or receive data from any third-party analytics, advertising, or tracking services. All functionality is self-contained within the Nuance ecosystem.
When the Extension facilitates actions involving connected services (e.g., Gmail for email drafting), these integrations are managed through the user's authenticated Nuance OS account and are governed by the respective service's own privacy policies.
8. Data Security
We take reasonable measures to protect data handled by the Extension, including:
- Encrypted data transmission (HTTPS/TLS)
- Secure local token storage via Chrome's storage APIs
- Server-side access controls and authentication enforcement
- Limited data collection following the principle of least privilege
9. User Control
As a user of the Extension, you can:
- Log out at any time to clear your session and local tokens
- Remove the Extension from Chrome to delete all locally stored data
- Control when the Extension accesses page data — it only reads tab content when you explicitly invoke it
10. Scope & Limitations
This Extension is an internal tool and is not intended for public distribution. Access is restricted to authorized Nuance Dev team members. The Extension is not designed for use by minors, and no data from children under 13 (or any applicable age threshold) is knowingly collected.
11. Changes to This Policy
This policy may be updated as the Extension evolves. Material changes will be communicated to team members via internal channels. The "Last Updated" date at the top of this document will reflect the most recent revision.
12. Contact
For questions, concerns, or requests related to this privacy policy or the Extension's data practices, reach out to the Nuance Dev team at [email protected].