Bulk-Save Gmail

Security & Privacy

Your data security is our top priority. Learn how we protect your information.

100% Client-Side Processing - Verified

Your emails and attachments never leave Google's ecosystem. All processing happens directly in your browser. We cannot see, access, or store your email content.

How Your Data Flows

Other Extensions

Your Gmail
↓ uploads your data
Their Servers
↓ processes & stores
Your Device

❌ Your data goes through their servers

❌ They can see your email content

❌ Privacy depends on their policies

Bulk-Save Gmail

Your Gmail
↓ direct download
Your Device
Our Servers

✓ Direct connection Gmail → You

✓ We can't see your emails

✓ Your data stays private

Only download counts are synced with our servers for quota tracking

Security Features

Chrome's Latest Security Framework

Built with Manifest V3, providing enhanced protection against malicious code injection and cross-site scripting attacks.

Google OAuth Authentication

We never see your Google password. Authentication is handled securely by Google using industry-standard OAuth 2.0.

Minimal Permissions

We only request the permissions absolutely necessary for functionality. No access to send emails, delete data, or modify your account.

Local Storage Only

Your preferences and session data are stored locally in your browser. All data is automatically cleared when you uninstall the extension.

Why We Need These Permissions

We use Chrome's secure storage API to save your settings and maintain your session. This data never leaves your browser and is encrypted by Chrome.

Core functionality - allows the extension to save email attachments as ZIP files to your chosen download location. We cannot access your downloaded files.

Enables secure OAuth authentication with Google. We never see your password - Google provides us with a temporary token to access your emails on your behalf.

Used for periodic tasks like checking your subscription status and managing offline sync queues. Helps maintain smooth operation without constant polling.

Allows the extension to update progress indicators and navigate to external pages (like our website) when needed. Limited to UI updates only.

Required to add our bulk save button to Gmail and read email data when you request downloads. We only access emails you explicitly select.

Third-Party Services

Stripe Payment Processing

All payment processing is handled by Stripe, a PCI Level 1 certified payment processor. We never see or store your credit card information.

Google APIs

We use official Google APIs to access Gmail and Google Drive. All communication is encrypted and follows Google's strict security standards.

Our Security Commitments

We comply with Google's API Services User Data Policy and Limited Use requirements
We never use your data for advertising or sell it to third parties
We don't train AI models with your data
We maintain minimal dependencies and regularly update them
We follow security best practices and conduct regular reviews

Verify Our Security Claims

For Technical Users

You can verify our "no server" claim by monitoring network traffic:

  1. Open Chrome Developer Tools (F12)
  2. Go to the Network tab
  3. Use the extension to download attachments
  4. Observe that data only flows between your browser and Google's servers

You'll only see connections to:

  • googleapis.com - For Gmail data
  • google.com - For authentication
  • stripe.com - For payments (Pro users)

Security Questions?

If you have any security concerns or questions, please don't hesitate to contact us at ladi@iamladi.com. We take all security reports seriously and will respond promptly.

← Back to Home