Salesforce SmartKit
Salesforce SmartKit Logo

Salesforce SmartKit

The Ultimate Admin Tool · Chrome Extension

Privacy Policy

Effective Date: May 2026 · Version 1.0.0

1. What Data Do We Collect?

We collect absolutely nothing.

The Salesforce SmartKit does not have a backend server, database, or analytics tracking mechanism. We do not track your usage, log the queries you write, or collect your personal information or your Salesforce organization's data.

2. How Does the Extension Work Without Collecting Data?

The extension acts solely as a local conduit between your Chrome Browser and your active Salesforce instance.

Local DataMechanism
Session IDs (`sid` cookies)To make API calls on your behalf, the extension reads your active Salesforce Session ID from your browser. This is stored exclusively in `chrome.storage.local` and only sent directly to Salesforce's official API endpoints.
UI Preferences & Draft SOQLThe extension uses `chrome.storage.local` to save your active Tab selection, theme, and draft SOQL queries. This data never leaves your local machine.

3. Permissions Justification

When installing the extension, Chrome will warn you that it requests broad permissions. Here is why those specific permissions are required strictly for functionality:

PermissionWhy It's Needed
*://*.force.com/* & *://*.salesforce.com/*Required to make Cross-Origin (CORS) API requests to Salesforce. Without this, the extension cannot fetch data or save your inline edits.
cookiesRequired to locate your active Salesforce Session ID so you don't have to manually log in to the extension.
storageRequired to save your settings and draft SOQL queries locally.
scripting & activeTabRequired to inject the floating "SmartKit" button and the "Show API Names" red text directly into the Salesforce web page you are viewing.

4. Third-Party Services

The extension does not embed any third-party tracking scripts. The extension does embed the open-source Monaco Editor for SOQL highlighting, but this is bundled locally within the extension files and does not "phone home" to Microsoft.

5. Security Recommendations for Users

  • Ensure your physical machine is secure.
  • Only install the extension from the official Chrome Web Store.
  • If you suspect your browser is compromised, log out of Salesforce immediately, which invalidates the Session ID on Salesforce's end.

6. Contact

For questions regarding this privacy policy or the source code, please review the public GitHub repository associated with this project or contact me via my portfolio contact form.

Explore Resources

User Guide

Step-by-step documentation

FAQs

Common questions & answers

SmartKit Product

Features & overview

Portfolio

Explore other projects

Still have questions?

If you want to learn more about how to use the extension or have other questions, reach out directly.

Contact Me