Read the Chrome permission prompt
Chrome permissions define what an extension can reach. Compare each requested permission with a visible product function. Access to the active tab can support capture or extraction, while broad access to every website requires a much stronger explanation.
Do not treat a short permission list as proof of safety, but do treat unexplained access as a reason to pause.
Verify the developer and support path
Look for a developer website, privacy policy, support channel, version number, and recent update date. These details make it possible to understand who maintains the product and what to do when a website update breaks the workflow.
Understand where your data goes
Check whether captures, leads, or marketplace records remain on the device, sync to an account, or are sent to an AI provider. Products should distinguish local processing from optional cloud features and explain deletion or retention behavior.
- What data is read from the page?
- Is the result stored locally or uploaded?
- Can the data be exported and deleted?
- Does a paid feature introduce cloud processing?
Review plan boundaries
A trustworthy upgrade path explains what remains free, what requires payment, how usage is measured, and the monthly price. A checkout callback should not be the only evidence that paid access is active; account and entitlement state should remain authoritative.

