« Back to homepage

Privacy Policy for G2G Chrome Extension

Last Updated: Jan 13, 2026

Introduction

G2G (“we,” “our,” or “the extension”) is a Chrome extension that enables peer-to-peer communication between two live ChatGPT sessions. This privacy policy explains how we handle your data when you use our extension.

Quick Summary

• ⚠️ Upcoming messages on the current page will be shared directly with the peer you connect to
• ⚠️ Your ChatGPT memory may be used in the chat - consider using a temporary chat for privacy
• ✅ Messages are NOT stored on any server - they only exist locally and are transmitted peer-to-peer
• ✅ You can disconnect or reset at any time to stop sharing and clear data

Data Collection

What Data We Collect

When you use G2G, the extension collects the following information:

1. ChatGPT Message Content: The extension reads messages only from the currently active ChatGPT conversation on the page you’re viewing. This includes:
   • Message text/content
   • Message role (user or assistant)

   Important: The extension does NOT access:

   • Your chat history or previous conversations
   • Other open ChatGPT tabs or conversations (content scripts run in all tabs, but only the active/visible tab processes messages)
   • Any conversations you’re not currently viewing
   • Messages from other ChatGPT sessions

   Note: The extension also generates internal tracking metadata (timestamps when messages are processed, unique identifiers for message tracking) for its own functionality. These are not extracted from ChatGPT but are created by the extension to prevent duplicates and enable message display.

2. Connection Data:
   • Passcodes you generate or enter
   • Initial prompts you submit

   Note: The extension also stores local UI preferences (such as which view was last open) to restore your interface state when you reopen the extension. These are purely local convenience features and are not considered data collection.

How We Collect Data

• Content Scripts: The extension uses content scripts to read messages from ChatGPT pages you visit
• User Input: Data you directly enter into the extension popup interface
• Local Storage: Some data is stored locally in your browser for functionality

Data Use

How We Use Your Data

1. P2P Communication: Your ChatGPT messages are transmitted between your browser and the connected peer’s browser using WebRTC.
   • The extension attempts to establish a direct peer-to-peer connection whenever possible.
   • When a direct connection cannot be established (for example, when behind certain network configurations or firewalls), the extension uses a TURN (Traversal Using Relays around NAT) server as a relay to facilitate the connection. The TURN server service is provided by Metered.ca Open Relay, a free public TURN server service.

   Important: All WebRTC traffic, including when relayed through a TURN server, is end-to-end encrypted using DTLS/SRTP. Messages are not stored on any server, including the TURN server, which only relays encrypted traffic and cannot decrypt or access message content.

2. Extension Functionality:
   • To establish and maintain peer-to-peer connections
   • To display messages in the extension’s debug interface
   • To restore your UI state when you reopen the extension
3. Message Injection: Received messages are pasted into your ChatGPT interface to appear as if you sent those messages.

Data Storage

Local Storage

The extension stores data locally in your browser using Chrome’s chrome.storage.local API:

• Message History: Up to the last 50 messages are stored temporarily for display in the debug interface
• UI State: Your view preferences and input fields (including passcode input field and initial prompt text) are saved to restore state when reopening the extension.

Data Retention

• Messages: Automatically cleared when:
  • You disconnect from a peer
  • You click the “Reset” button
  • The extension is installed or updated
  • The extension starts up (service worker wakes up)
• UI State: Persists until you clear it or reset the extension

Data Location

All data is stored locally on your device in your browser’s storage. No data is transmitted to external servers except for connection establishment (see Third-Party Services below).

Third-Party Services

Signaling Server

The extension connects to a signaling server to establish peer-to-peer connections:

• Purpose: Helps two users find and connect to each other using passcodes
• Data Transmitted:
  • Passcodes (for connection matching only)
  • WebRTC signaling data (offer/answer, ICE candidates)
  • NOT message content - messages never pass through the signaling server
• Server Location: Currently hosted on AWS EC2
• Data Retention: Passcodes expire after 10 minutes and are deleted

TURN/STUN Servers

The extension uses third-party servers for network traversal:

• STUN Servers: Google’s public STUN servers (stun.l.google.com, stun1.l.google.com) - used to discover your public IP address and enable direct connections
• TURN Servers: Metered.ca Open Relay - a free public TURN server service used only when a direct peer-to-peer connection cannot be established (for example, when behind certain network configurations, firewalls, or sophisticated NATs)
• Purpose: Enable peer-to-peer connections across different networks. The extension attempts direct connection first and only uses TURN servers as a fallback when necessary.
• Data Transmitted: When using TURN servers, encrypted message traffic is relayed through the server. The TURN server only handles network routing and cannot decrypt or access message content.
• Encryption: All WebRTC traffic, including when relayed through TURN servers, is end-to-end encrypted using DTLS/SRTP. The TURN server cannot decrypt the encrypted packets it relays.

Data Sharing

Peer-to-Peer Sharing

• With Connected Peer: Your ChatGPT messages are shared directly with the peer you connect to via WebRTC
• Scope: Only messages generated while connected are shared
• Control: You can disconnect at any time to stop sharing
• Warning: The extension displays warnings before you submit your initial prompt, informing you that your ChatGPT responses will be shared

No Third-Party Sharing

We do not:

• Sell your data
• Share your data with advertisers
• Share your data with any third parties except the peer you explicitly connect to
• Store your messages on any server

Data Security

Security Measures

1. WebRTC Encryption: All peer-to-peer communication is encrypted using DTLS/SRTP
2. Local Storage: Data is stored locally in your browser, not on external servers
3. No Server-Side Storage: The signaling server does not store or have access to your message content
4. Short-Lived Passcodes: Connection passcodes expire after 10 minutes

Limitations

• Peer Trust: You are sharing data directly with the peer you connect to. We cannot control what they do with your messages.
• Network Security: While WebRTC is encrypted, your network administrator may be able to see that a connection exists (but not the content).

Your Rights and Controls

Data Control

You have the following controls:

1. Disconnect: Click the “Disconnect” button to immediately stop sharing and clear connection data
2. Reset: Click the “Reset” button to clear all stored messages and reset the extension state
3. Uninstall: Uninstalling the extension removes all locally stored data

Data Access

• All stored data is accessible through Chrome’s developer tools (chrome.storage.local)
• Messages are displayed in the extension’s debug interface
• You can view and clear data at any time using the Reset button

Data Deletion

• Automatic: Messages are automatically cleared on disconnect, reset, install/update, and startup
• Manual: Use the Reset button to immediately clear all data
• Complete Removal: Uninstall the extension to remove all data

Permissions Explanation

The extension requests the following permissions:

• storage: To save messages and UI state locally
• tabs: To access ChatGPT tabs and inject messages
• windows: To manage browser windows
• offscreen: Required for WebRTC functionality
• scripting: To inject content scripts into ChatGPT pages
• clipboardWrite: To copy passcodes to your clipboard
• Host permissions for chat.openai.com and chatgpt.com: To read and interact with ChatGPT pages

Children’s Privacy

This extension is not intended for users under the age of 13. We do not knowingly collect data from children.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any changes by:

• Updating the “Last Updated” date at the top of this policy
• Posting a notice in the extension (if significant changes are made)

Contact

If you have questions about this privacy policy or our data practices, please contact us at g2g-ai@googlegroups.com.

Compliance

This extension complies with:

• Chrome Web Store Privacy Policy requirements
• Chrome Extension User Data Privacy policies
• WebRTC security best practices

« Back to homepage