Privacy Policy

PRism is a Chrome extension that surfaces your open GitHub Pull Requests and review requests directly from your browser toolbar. We are committed to protecting your privacy and being transparent about what data the extension accesses and why.

This policy explains what information PRism accesses, how it is used, and your rights. By installing PRism you agree to the practices described here.

PRism requests the following GitHub OAuth scopes when you sign in:

• repoRead access to your repositories (public and private) so PRism can list pull requests and review requests assigned to you.
• read:userYour GitHub username and avatar, used only to display your identity inside the extension popup.

PRism does not access your email address, contacts, browsing history, or any data unrelated to GitHub pull requests.

Data accessed through the GitHub API is used exclusively to:

• Fetch and display your open pull requests.
• Fetch and display review requests awaiting your action.
• Show a badge count on the extension icon so you have an at-a-glance summary.

All GitHub API requests are made directly from your browser to GitHub's servers. PRism has no backend server; your data never passes through our infrastructure.

PRism stores only the following locally in your browser using chrome.storage.local:

• Your GitHub OAuth token (needed to make authenticated API calls).
• A brief cache of your PR list to reduce redundant API requests.

This data is stored only on your device, is never transmitted to any third party, and is deleted immediately when you sign out or uninstall the extension.

We do not sell, rent, or share your personal data with any third party. The only external service PRism communicates with is the GitHub API on your behalf, subject to GitHub's Privacy Statement.

The following Chrome extension permissions are declared in the manifest and are each required for core functionality:

• identityEnables the GitHub OAuth 2.0 sign-in flow via chrome.identity.
• storagePersists your auth token and PR cache locally on your device.
• tabsOpens the selected pull request URL in a new browser tab when you click on a PR.
• alarmsSchedules periodic background refreshes of your PR list so the badge count stays up to date.

PRism is not directed at children under 13 years of age and does not knowingly collect data from them. GitHub itself requires users to be at least 13 years old.

We may update this privacy policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. Continued use of PRism after any changes constitutes acceptance of the updated policy.

If you have any questions or concerns about this privacy policy or PRism's data practices, please open an issue on our GitHub repository or contact us at privacy@prism.dev.