Skip to main content
Grants up to $15,000/year for media
InclusiveWeb

Privacy Policy — InclusiveWeb Accessibility Scanner

Last updated: 05.06.2026

InclusiveWeb Accessibility Scanner (the “Extension”) is a Chrome extension that lets account holders of the InclusiveWeb cabinet run web-accessibility scans on sites they have added to their cabinet, directly from their browser. The Extension only works after you sign in to your InclusiveWeb account. This policy explains what data the Extension processes and how.

Contents

  1. 1What data we process
  2. 2What we do NOT collect
  3. 3Who data is shared with (third parties)
  4. 4Browser permissions
  5. 5Storage & retention
  6. 6Your rights
  7. 7Security
  8. 8Changes
  9. 9Contact

1. What data we process

When you sign in and start a scan, the Extension processes:

  • Cabinet email typed on the sign-in screen; sent to api.inclusiveweb.com.ua to request a one-time code. Purpose: identify your account.
  • One-time code (OTP) typed on the verify screen; sent to api.inclusiveweb.com.ua to sign in.
  • Access tokens (JWT) issued by the backend after sign-in; stored locally in chrome.storage.local (this device only). Purpose: keep you signed in.
  • Selected UI language stored locally in chrome.storage.local.
  • In-progress scan state generated during a scan; stored locally to show progress if you reopen the panel.
  • Page URLs from your cabinet fetched from api.inclusiveweb.com.ua for the site you pick; held in memory only during the scan.
  • Accessibility findings computed locally in your browser by the Extension's bundled scan engine inside each opened tab; sent to api.inclusiveweb.com.ua and stored in your InclusiveWeb cabinet to produce your audit report.

2. What we do NOT collect

  • Any data from sites that are not in your InclusiveWeb cabinet's site list.
  • Passwords, cookies, payment data, form contents, or page text beyond what the scan engine references (HTML snippets near accessibility issues, e.g. an <img> with missing alt text).
  • Analytics, telemetry, advertising IDs, or fingerprinting data.
  • Browsing history beyond the URLs you scan.

3. Who data is shared with (third parties)

The Extension communicates only with the InclusiveWeb backend (api.inclusiveweb.com.ua) over HTTPS. It does not send data to any other third party.

The accessibility-scan engine is bundled with the Extension and runs locally in your browser — it does not phone home.

Google Fonts (fonts.googleapis.com) are loaded for typography; Google's privacy policy applies to those requests.

4. Browser permissions

The Extension uses the minimum permissions needed: tab access and scripting to open your pages in background tabs and run the check; local storage to keep you signed in and save progress; side panel and notifications for the UI and scan-finished message; mobile-device emulation (via the DevTools Protocol) only to evaluate the page's mobile layout. The Extension does not use these permissions to collect any other data.

5. Storage & retention

  • Tokens / language / scan state in chrome.storage.local: until you sign out, uninstall the Extension, or clear your Chrome storage.
  • Scan results on the InclusiveWeb backend: per your account's retention policy in the cabinet.

6. Your rights

  • Sign out at any time (header → email pill → sign out); clears all tokens from your device.
  • Uninstall the Extension to remove all locally stored data.
  • Request deletion of your scan history by emailing [email protected].

7. Security

All network requests use HTTPS to api.inclusiveweb.com.ua. Tokens are stored in chrome.storage.local, sandboxed per extension by Chrome. The Extension is built on Manifest V3.

8. Changes

We may update this policy; the “Effective date” will change accordingly.

9. Contact

Questions or requests about this policy:

Related documents

Have questions? Contact us

Privacy Policy — InclusiveWeb Accessibility Scanner Extension | InclusiveWeb