Privacy / ReplyForge
ReplyForge — Privacy Policy
AI reply generator for Gmail and Outlook.
Last updated: April 8, 2026
1. Who we are
ReplyForge is a Chrome extension published under the toolsmith brand by Visualab AI ("we", "our", "us"). This Privacy Policy describes how ReplyForge handles your information.
Contact: [email protected]
Support page: /support/replyforge
2. Chrome Web Store Limited Use disclosure
ReplyForge's use and transfer of information received from Google APIs (and any other browser-provided user data) adheres to the Chrome Web Store User Data Policy, including the Limited Use requirements.
- We only use user data to provide and improve the user-facing features of ReplyForge.
- We do not sell user data to third parties.
- We do not use user data for advertising, including retargeting, personalized or interest-based advertising.
- We do not allow humans to read user data, except (a) with your explicit consent, (b) for security investigations, or (c) to comply with applicable law.
3. Permissions we request
| Permission | Why we need it |
|---|---|
| storage | Save your tone presets, signature, draft history, and Pro state in chrome.storage.local on your device. |
| activeTab | Read the currently open Gmail / Outlook thread when you click the ReplyForge button. |
| scripting | Inject the ReplyForge composer into Gmail and Outlook web mail. |
| host_permissions: mail.google.com, outlook.live.com, outlook.office.com | Required to read the open thread and inject the reply composer on supported web mail clients. |
| host_permissions: api.toolsmith.visualab-ai.com | Send AI generation requests to our Cloudflare Workers proxy, which forwards to the Anthropic Claude API. |
4. Data flow — what leaves your browser
| Data | Destination | Purpose | Retention |
|---|---|---|---|
| Subject and last 5 messages of the open thread | Cloudflare Workers proxy → Anthropic Claude API | Generate the reply draft | Not stored server-side; passed through in real time |
| Your tone preset, signature, and prompt template | Cloudflare Workers proxy → Anthropic Claude API | Style the reply | Not stored server-side |
| Draft history (last 100 drafts) | Your browser only (chrome.storage.local) | Let you review and reuse previous drafts | Until you uninstall or click "Clear history" |
| Google / Microsoft account email (Pro users only) | ExtensionPay / Stripe | Verify Pro subscription | Until you cancel and request deletion |
| Anonymous events (e.g. "reply_generated", "tone=formal") | PostHog | Aggregate analytics, no PII | 12 months |
Note: ReplyForge only reads a thread when you explicitly click the ReplyForge button. It never scans your inbox in the background, never sends mail on your behalf, and never reads attachments. Generated drafts are placed in the standard reply composer for you to review, edit, and send manually.
ReplyForge's use of information from Google APIs (Gmail) adheres to the Google API Services User Data Policy, including the Limited Use requirements. We do not transfer Gmail data to any third party other than the sub-processors listed above, and only for the user-facing reply-generation feature.
5. Third-party sub-processors
ReplyForge may transmit data to the following sub-processors:
- Anthropic, PBC — Claude API, used to generate AI responses. Anthropic does not use API inputs/outputs to train models by default. Privacy policy.
- Cloudflare, Inc. — Workers used as a secure proxy in front of the AI API (rate limiting, key protection). Logs are kept for up to 7 days for abuse prevention only. Privacy policy.
- ExtensionPay / Stripe, Inc. — Subscription billing for Pro features. We never see full card numbers. ExtensionPay / Stripe.
- PostHog Inc. — Anonymous, aggregated product analytics. IP addresses are anonymized and no personally identifying information is sent. Privacy policy.
6. Where your data is stored
- On your device: Settings, history, and preferences are stored in
chrome.storage.local. This data never leaves your browser unless you explicitly export it. - In transit: AI requests pass through Cloudflare Workers (US/EU edge) to the Anthropic API (US).
- Billing: Stripe stores payment data in accordance with PCI-DSS in the US/EU.
- Analytics: PostHog stores anonymous events for up to 12 months.
7. How to delete your data
- Local data: Open the ReplyForge options page and click "Reset all data", or uninstall the extension from
chrome://extensions. - Subscription data: Email [email protected] with subject "Account Deletion" — we will remove your ExtensionPay record within 30 days.
- Analytics: Anonymous PostHog events cannot be tied to a specific user, but you can opt out from the extension settings.
8. Your rights (GDPR / CCPA)
If you are in the EU/EEA (GDPR) or California (CCPA), you have the right to access, correct, delete, port, and restrict processing of your personal data, and to object to processing or withdraw consent at any time. Email [email protected] to exercise any of these rights. We respond within 30 days.
9. Children's privacy
ReplyForge is not directed at children under 13 (or 16 in the EU). We do not knowingly collect personal data from children. If you believe we have, contact us and we will delete it.
10. Changes to this policy
Material changes will be reflected on this page with a new "Last updated" date. Continued use of ReplyForge after changes constitutes acceptance.
11. Contact
Visualab AI
Email: [email protected]
Website: visualab-ai.com