Privacy Policy for Geoffrey

Last Updated: February 10, 2026

Introduction

Geoffrey ("the Extension") is a Chrome browser extension that helps users generate follow-up emails from Google Meet transcripts. This Privacy Policy explains how Geoffrey collects, uses, and protects your information.

Information We Collect

1. Google Account Information

When you sign in to Geoffrey, we access:

Email address (to identify your account)
Profile name (to personalize the extension)

2. Gmail Data

Geoffrey accesses your Gmail to:

Read transcript emails from Google Meet (sent by gemini-meet-transcript@google.com)
Create draft emails based on the transcript analysis

3. Google Calendar Data

Geoffrey accesses your Google Calendar to:

Retrieve meeting attendee information (email addresses of meeting participants)

4. User Preferences

We store locally in your browser:

Authentication tokens (OAuth tokens)
Extension settings (tone preferences, coaching toggle state)

How We Use Your Information

Geoffrey uses your information to:

Analyze meeting transcripts using AI to generate follow-up email drafts
Identify meeting participants from your Google Calendar
Create Gmail drafts pre-addressed to meeting attendees
Provide coaching insights (optional feature)

Data Storage and Security

What We Store

Authentication tokens: Stored locally in your browser using Chrome's storage API
User preferences: Stored locally in your browser

What We DO NOT Store

Meeting transcripts: Transcripts are processed in real-time and are NOT stored permanently
Email content: Generated emails are created as Gmail drafts and stored by Google, not by Geoffrey
Personal data: We do not store your emails, calendar events, or personal information on our servers

Data Transmission

Transcript data is sent securely (HTTPS) to our AI processing backend (Cloudflare Workers)
Data is processed using AI (Llama 3.3 70B via Cloudflare Workers AI)
After processing, the transcript data is discarded immediately

Third-Party Services

Cloudflare Workers

Purpose: AI processing backend for analyzing transcripts and generating emails
Data Sent: Meeting transcript text, user preferences (tone, content toggles)
Data Retention: No permanent storage; data is processed in-memory and discarded
Security: TLS encryption, ISO 27001 certified infrastructure

Google APIs

Gmail API: To read transcript emails and create draft emails
Google Calendar API: To retrieve meeting attendee information
OAuth 2.0: For secure authentication

Geoffrey complies with Google's OAuth API Services User Data Policy, including the Limited Use requirements.

Your Rights

You have the right to:

Revoke access: Uninstall the extension or revoke OAuth permissions at any time via Google Account Permissions
Delete data: All locally stored data is deleted when you uninstall the extension
Request information: Contact us at support@oxad.tech for questions about your data

Data Sharing

Geoffrey does NOT:

Sell your data to third parties
Share your transcripts or emails with anyone
Use your data for advertising or marketing purposes

Children's Privacy

Geoffrey is not intended for users under the age of 13. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of any significant changes by updating the "Last Updated" date at the top of this policy.

Contact Us

If you have questions or concerns about this Privacy Policy, please contact:

Email: support@oxad.tech
Website: https://geoffrey-ai.oxad.workers.dev

Google API Services User Data Policy Compliance

Geoffrey's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Geoffrey will only use access to read, write, modify, or control Gmail message bodies, metadata, headers, and settings to:

Provide the features described in the extension listing
Comply with applicable laws and regulations
Detect, prevent, or address fraud, security, or technical issues

Geoffrey will NOT:

Transfer Gmail data to others unless necessary to provide or improve these features, comply with applicable law, or as part of a merger, acquisition, or sale of assets
Use Gmail data for serving advertisements
Allow humans to read Gmail data unless we have affirmative agreement, are necessary for security purposes, or to comply with applicable law