Updates to Calendly's browser extension permissions

Calendly's browser extension is available on Chrome, Firefox, and Edge. Changes to extension permissions will take effect in April 2024. This article explains the updates and what actions to take.

Note: When your Calendly extension updates to version 4.0, your web browser might automatically disable the extension. To continue using Calendly's features via the extension, it will need to be re-enabled. To do so:

  1. Locate your extensions toolbar. If affected, you will see an "Error" prompt. Below is an example of this prompt in Google Chrome.
    image (19).png
  2. Selecting this button will show that the Calendly extension has been disabled, with an exclamation point next to the message. Select this message.
  3. From the pop-up, select the Accept permissions button.

New extension permissions

Calendly will ask for read/change permission on your internet browser, and therefore be visible on all sites. For example, the extension will be able to determine if you are using Google Chrome as an internet browser.

Current extension permissions

What our extension does What our extension does not do
  • The integration requests permission to access the desired site in order to read the visible DOM (Document Object Model) structure and insert Calendly buttons for users to quickly leverage.
  • We only run code that's shipped directly from the extension and was reviewed by the extension stores.
  • We read the URL of open tabs to determine if a tab Calendly integrates with is open.
  • If a tab that Calendly can integrate with is open, we programmatically inject a script to add the Calendly button / feature.
  • We do not read or store any of the user messages or emails.
  • We do not read content from the site at all except to determine whether we should be inserting our buttons / features.
  • We do not track any user activity on the sites except for direct interaction with Calendly button / features.
  • We do not load remote scripts for these sites.
  • We cannot read the URL of tabs which we do not have a host permission for and we do not record or track this information anywhere.
  • We do not run our normal error reporting software on these sites to avoid accidentally capturing user data.

Disabling the updated extension permissions

If you wish to turn off the extension, you can do so by viewing the extension's Permissions page in your internet browser. You can also use this menu to turn off the extension's entry points to specific sites. These actions are available after installing the extension and using it to sign in to Calendly. Below are screenshots of these menus in each supported browser.

Google Chrome Microsoft Edge Firefox
Calendly extension entry points chrome

If you are using Calendly's extension on a managed internet platform, your IT admins can override the extension's permissions using the runtime_blocked_hosts and runtime_allowed_hosts fields. Use the links below for browser-specific steps:

Microsoft Edge

Google Chrome

Mozilla Firefox NOTE: Firefox uses the restricted_domains field for these permissions.