# Privacy Policy for SAP ID to Username Extension **Last Updated: December 31, 2024** ## Overview SAP ID to Username ("the Extension") is committed to protecting your privacy. This privacy policy explains what data the Extension collects, how it's used, and how it's stored. ## Data Collection The Extension collects and stores the following data **locally on your device only**: ### 1. Username Cache - **What**: Mappings between SAP IDs (e.g., c123456, d123456) and corresponding usernames (e.g., "Jianqing Peng") - **Why**: To improve performance and reduce repeated API calls to GitHub Enterprise servers - **Where**: Stored locally using Chrome's storage API (chrome.storage.local) - **Example**: `{"c123456": "John Doe"}` ### 2. Extension Settings - **What**: User preferences such as whether the extension is enabled or disabled - **Why**: To remember your settings between browser sessions - **Where**: Stored locally using Chrome's storage API (chrome.storage.local) ### 3. Usage Statistics - **What**: Aggregate counts including: - Total number of ID replacements performed - Number of cache hits (successful cache lookups) - Number of API calls made to GitHub Enterprise - **Why**: To display usage statistics in the extension popup for user information - **Where**: Stored locally using Chrome's storage API (chrome.storage.local) ## How Data is Used All data collected by the Extension is used exclusively for its core functionality: 1. **Caching**: Previously fetched usernames are cached locally to provide instant replacements without repeated network requests 2. **Replacement**: The Extension scans GitHub Enterprise pages for IDs and replaces them with cached or newly fetched usernames 3. **User Interface**: Statistics are displayed in the extension popup to show you how the extension is performing ## Data Storage - **All data is stored locally** on your device using Chrome's storage API - **No data is transmitted** to external servers, third-party services, or the extension developer - **No analytics or tracking** services are used - **No personal information** is collected beyond what's necessary for the extension's functionality ## Data Access The Extension only accesses data from: 1. **SAP GitHub Enterprise domains**: `github.enterprise.example.com` and `github.enterprise.example.com` - Purpose: To detect IDs in page content and fetch user profile information - Access: Read-only access to page content and GitHub Enterprise API endpoints - Authentication: Uses your existing browser session cookies (no additional credentials stored) ## Data Sharing **The Extension does NOT share any data with third parties, external servers, or the developer.** All processing happens entirely within your browser. ## Data Retention - **Cache data**: Stored indefinitely until you manually clear it via the extension popup or browser storage - **Settings**: Stored indefinitely until you uninstall the extension - **Statistics**: Stored indefinitely until you manually clear them via the extension popup ## User Control You have full control over your data: 1. **View Cache**: Open the extension popup to see all cached ID to username mappings 2. **Clear Cache**: Click "Clear Cache" in the extension popup to delete all cached data 3. **Export Data**: Click "Export Cache" to download your cached mappings as a JSON file 4. **Disable Extension**: Toggle the extension off to stop all data collection and processing 5. **Uninstall**: Removing the extension will delete all stored data from Chrome's storage ## Permissions Justification The Extension requests the following permissions: ### 1. Storage Permission - **Purpose**: To cache ID to username mappings locally for improved performance - **Data**: Only IDs and corresponding usernames are stored ### 2. Host Permissions (github.enterprise.example.com/*, github.enterprise.example.com/*) - **Purpose**: To read page content, detect IDs, and fetch user profile data from GitHub Enterprise - **Access**: Limited to SAP's internal GitHub Enterprise domains only - **Authentication**: Uses your existing browser session (no credentials stored) ## Security - All data is stored locally using Chrome's secure storage API - No data transmission to external servers - Content scripts only run on specified SAP GitHub Enterprise domains - Extension follows Chrome Web Store security best practices ## Changes to This Policy This privacy policy may be updated to reflect changes in the Extension's functionality. The "Last Updated" date at the top of this document indicates when the policy was last revised. Continued use of the Extension after changes constitutes acceptance of the updated policy. ## Open Source This extension is open source. You can review the complete source code at: https://github.com/pjq/sap-id2username ## Contact For questions, concerns, or requests regarding this privacy policy or your data: - **GitHub Repository**: https://github.com/pjq/sap-id2username - **Email**: pengjianqing@gmail.com ## Summary **In short**: This extension only stores ID to username mappings locally on your device to improve performance. No data is sent to external servers or shared with anyone. You have full control to view, export, or delete your data at any time. --- By installing and using the SAP ID to Username Extension, you acknowledge that you have read and understood this Privacy Policy.