B
Bluetree
Client Portal

Bluetree Docs — Privacy Policy

Last updated: 21 April 2026

Who we are

Bluetree Docs is a Chrome extension built and operated by Bluetree Media (bluetree-media.co.uk). The extension overlays internal process documentation onto pages within HubSpot (app.hubspot.com) for clients of Bluetree Media's RevOps consultancy.

What the extension does

When a page is loaded on app.hubspot.com (or a regional variant such as app-eu1.hubspot.com), the extension:

  • Reads the HubSpot portal (hub) ID from the current URL.
  • Calls portal.bluetree-media.co.uk/api/extension/cards to retrieve any documentation cards authored for that hub.
  • Displays those cards as an overlay on the page when the user clicks an injected icon.

What data we collect

The extension does not collect any personal data about the user. It does not read, log or transmit the contents of HubSpot pages, form inputs, contact details, or any other data you are viewing or editing in HubSpot.

The only data sent to our backend is the numeric HubSpot hub ID (visible in every HubSpot URL), used to look up which documentation cards apply. No user identity, email, cookie, token, or HubSpot content is sent.

Permissions we request and why

host_permissions on HubSpot
Required so the extension can run on HubSpot pages and display the documentation overlay inline.
storage
Used to cache documentation cards locally in your browser for 5 minutes, so the overlay does not re-fetch on every page load. Cleared when you sign out of Chrome or remove the extension.

Data sharing and retention

We do not sell, share, or transfer any data to third parties. Documentation card content (authored by Bluetree Media admins) is stored in the Bluetree client portal database and served only to hubs that have been explicitly connected by a Bluetree administrator.

HubSpot OAuth

When a Bluetree administrator connects a client's HubSpot portal to the docs system, a HubSpot OAuth flow is initiated from the admin portal (not from this extension). The resulting access tokens are stored securely on the Bluetree server and used only to identify the hub. The extension itself does not participate in this OAuth flow.

Security

All traffic between the extension and the backend is sent over HTTPS. No authentication credentials are stored in the extension.

Contact

For any privacy questions or to request removal of a HubSpot portal from our system, contact support@bluetree-media.co.uk.

Changes

We may update this policy from time to time. The current version is always published at this URL.