StudyLock — Privacy Policy

Last updated: 2026-07-06

StudyLock is a Chrome extension that blocks a list of websites for a timed study session. This policy describes, in plain language, what data the extension handles and what it does with it.

What is stored, and where

The extension stores the following, only in Chrome's local chrome.storage.local on your own device:

Password reset by email (the one exception to "fully local")

The first time you use the extension, it asks you to set a password and a recovery email together, so password reset always has something to work with later. If you use "Forgot password," the extension sends that email address and a one-time 6-digit reset code to EmailJS, a third-party email delivery service, so it can email you the code. This is the only situation in which any data leaves your device — it happens only when you actively use "Forgot password," not on every use of the extension. The reset code itself expires after 15 minutes and is never stored in plain text.

What is not collected

Your password

When you set a password, it is run through a standard password-hashing function (PBKDF2 with a random per-install salt) and only the resulting hash and salt are saved. The plaintext password is never written to disk, never logged, and is discarded from memory once the hash is computed or compared. There is no default or pre-set password — you choose your own password the first time you use the extension.

Uninstalling

Uninstalling the extension removes all data it stored, since everything lives in the extension's own local storage and nowhere else.

Contact

Questions about this policy or how StudyLock handles data can be sent to hasnainraza116@gmail.com.