StoicSoft — Privacy Policy
Last updated: March 27, 2026
This privacy policy covers all browser extensions published by StoicSoft, including DevKit - Developer Toolbox and Server Spy - HTTP Headers & Server Inspector.
Summary
Our extensions run entirely on your device. We do not collect, transmit, store, or sell any user data. Period.
Data Collection
We do not collect any of the following:
- Personal information (name, email, address, phone number)
- Browsing history or activity
- Website content or page data
- Authentication tokens, cookies, or credentials
- IP addresses or geolocation data
- Analytics, telemetry, or usage statistics
- Financial or payment information
Data Storage
Our extensions use Chrome's local storage (chrome.storage.local) solely to save your preferences (such as theme selection and last-used tool). This data:
- Never leaves your device
- Is not transmitted to any server
- Is not shared with any third party
- Is automatically removed when you uninstall the extension
Extension-Specific Details
DevKit - Developer Toolbox
DevKit provides developer utility tools (JSON formatting, encoding/decoding, hashing, etc.) directly in your browser toolbar.
- Clipboard access: DevKit reads from and writes to your clipboard only when you explicitly click a "Paste" or "Copy" button. Clipboard data is processed locally in memory and is never stored or transmitted.
- Context menus: DevKit adds a right-click menu option to send selected text to a tool. The selected text is processed locally and never transmitted.
- Storage: Saves your preferences (theme, last-used tool, recent input) locally on your device.
- Remote code: DevKit does not load or execute any remote code. All functionality is bundled within the extension.
Server Spy - HTTP Headers & Server Inspector
Server Spy inspects HTTP response headers, security configuration, and server technology for websites you visit.
- Web requests: Server Spy reads HTTP response headers from network requests to display server information. Header data is processed locally and never transmitted.
- Tabs: Server Spy accesses the active tab's URL to match it with captured response headers. No browsing history is collected or stored.
- Scripting: Server Spy injects a small content script to gather page-level metadata (navigation timing, protocol). This data is processed locally and never transmitted.
- Host permissions (all URLs): Required to inspect headers on any website you visit. Server Spy only reads response headers; it does not modify page content.
- Context menus: Server Spy adds a right-click menu option for quick access. No page data is collected through this feature.
- Storage: Saves your preferences (theme, auto-capture setting) locally on your device.
- Remote code: Server Spy does not load or execute any remote code. All functionality is bundled within the extension.
Third-Party Services
Our extensions do not integrate with, connect to, or transmit data to any third-party services, APIs, servers, or analytics platforms.
Permissions Explained
| Permission | Why it's needed | Data transmitted |
|---|---|---|
storage | Save user preferences locally | None |
clipboardRead | Paste content into tools (DevKit) | None |
clipboardWrite | Copy tool output to clipboard (DevKit) | None |
contextMenus | Right-click menu for quick access | None |
webRequest | Read HTTP response headers (Server Spy) | None |
tabs | Identify active tab URL (Server Spy) | None |
scripting | Gather page timing metadata (Server Spy) | None |
host_permissions | Inspect headers on any website (Server Spy) | None |
Children's Privacy
Our extensions are developer tools not directed at children under 13. We do not knowingly collect any data from anyone, including children.
Changes to This Policy
If we update this policy, the changes will be posted on this page with an updated date. Since we do not collect any data, meaningful changes are unlikely.
Contact
If you have questions about this privacy policy, contact us at:
Email: [email protected]
Publisher: StoicSoft