Privacy Policy - Password Generator Pro

Last updated: May 12, 2026

Generated passwords stay on your device. We do collect anonymous product analytics so we can count how many people use which features.

What stays on your device

All passwords you generate, settings, and preferences live in Chrome's local storage (chrome.storage.local) on your computer and are never uploaded to our servers. Passwords are generated locally using the Web Crypto API.

What we do collect (anonymous analytics)

When the extension is installed, used, or uninstalled, it sends a small product-analytics event to our server. Each event includes:

A randomly generated device identifier (so we can count unique users without knowing who they are)
The event type (install, first action, paywall view, conversion, uninstall, etc.)
The extension version and your browser language
UTM parameters if you arrived from a marketing link

The events do not include the URL of the page you are on, any password you generate, your name, or your email.

Breach check (Have I Been Pwned)

The optional breach-check feature uses the Have I Been Pwned k-anonymity model. Your password is hashed locally with SHA-1, and only the first 5 characters of the hash are sent to api.pwnedpasswords.com. Have I Been Pwned never receives your full password or the full hash. The full password never leaves your device.

License and payment

If you upgrade to a paid plan, your device identifier is also used to verify your license. Payments are processed by Stripe; we do not see or store your card details. If you provide an email for a license, we store only that email and your plan.

Third-party services we use

peakproductivity.online: analytics events, license verification, optional rating feedback, and (for paid features) checkout redirect.
Stripe: payment processing for paid plans.
api.pwnedpasswords.com (Have I Been Pwned): only the first 5 characters of a SHA-1 hash of your password are sent (k-anonymity model), and HIBP never sees your full password.

Permissions and why we ask for them

This extension declares only the permissions it actually uses. Each is listed in the Chrome Web Store entry, and the reason is documented there.

Data we do NOT collect

Your browsing history
The content of pages you visit
The passwords you generate
Your name, address, or any account information beyond an email if you choose to provide one for a paid plan

Your rights

To request deletion of your device identifier and any associated analytics or license records, email support@peakproductivity.online. We will delete on request.

Changes to this policy

If we change this policy, the "Last updated" date above will change and significant changes will be communicated through the extension's release notes.

Contact

Questions? support@peakproductivity.online.