ETX Toolbox is a modular browser extension that provides capture, productivity, page utility, privacy inspection,
and AI-assisted tools. This Privacy Policy explains what information the extension stores, when data may leave your
device, and how browser permissions are used.
1. Core Privacy Approach
ETX Toolbox is designed to store most settings and working data locally in the browser.
We do not run our own analytics, advertising, or user-tracking service inside the extension.
We do not sell personal data.
Some features can interact with third-party services only when that feature requires it or when the user explicitly configures and uses it.
2. Data Stored Locally on Your Device
The extension may store the following information locally using chrome.storage.local, localStorage, or IndexedDB:
Extension preferences — enabled plugins, favorites, ordering, UI state, language, and side panel target state.
AI provider configuration — provider profiles, model selections, base URLs, API keys, and optional custom headers entered by the user.
Plugin-specific working data — note content, JSON formatter state, CSS rules, color history, recent actions, bookmark preferences, and image/screenshot editor presets.
Pomodoro state and statistics — timer phase, remaining state, and locally stored usage stats.
Session Recorder data — locally saved session metadata and recorded DOM event timelines in IndexedDB.
Visual Diff data — locally saved page snapshot metadata and image data in IndexedDB.
Privacy inspection results — current-page analysis data generated in memory or from browser APIs while you use Privacy Shield.
3. Data That May Be Sent to Third Parties
Most ETX Toolbox features work locally. However, some features may send data to third parties in the following cases:
AI features — if you configure and use AI tools such as summarization, translation, or writing, the text you submit and related prompt content may be sent to the third-party AI provider you choose, such as OpenAI, OpenRouter, Anthropic, Google Gemini, or another compatible provider configured by you.
Provider configuration and model lookup — when you test or use an AI provider, the extension may make requests to that provider's API endpoints using the API key and settings you entered.
Remote page assets — some workflows may fetch page resources or images in order to save, convert, compare, or process them at your request.
Public favicon lookup — some UI surfaces may request public favicon assets for domains shown in the extension interface.
These third-party services are governed by their own privacy policies and terms. You are responsible for reviewing
the provider you choose to use.
4. Data We Do Not Collect for Ourselves
We do not operate our own remote user analytics platform for ETX Toolbox.
We do not collect browsing history as a separate analytics dataset.
We do not transmit your local extension data to our own servers.
We do not share your data with advertisers.
5. How Permissions Are Used
downloads — save screenshots, images, converted files, exported content, and other user-requested outputs to disk.
activeTab — access the current active page when a user invokes page-specific tools.
sidePanel — open ETX Toolbox tools in the browser side panel.
storage — persist local settings, plugin state, AI configuration, and saved tool data.
tabs — identify the active tab, read tab metadata needed for page tools, and communicate with page content scripts.
windows — open and control extension UI flows that depend on the current browser window context.
alarms — keep timer-based features such as Pomodoro working reliably under Manifest V3 service worker suspension.
scripting — inject content scripts on supported pages when needed for tools like Color Picker, Text Extractor, Privacy Shield, and similar page utilities.
bookmarks — create or manage bookmarks when the user uses bookmark-related features.
cookies — inspect or remove cookies for the current site when the user uses cookie/privacy tools.
clipboardWrite — copy colors, text, screenshots, QR codes, and other generated output to the clipboard when requested by the user.
contextMenus — provide right-click actions such as translating selected text or downloading images.
notifications — show Pomodoro and workflow notifications initiated by extension features.
<all_urls> — allow page-level tools to run on websites the user chooses to use them on.
6. Data Retention and Control
Locally stored extension data remains on your device until you remove it, overwrite it, clear browser storage, or uninstall the extension.
You can remove many saved items directly through the extension UI, such as notes, snapshots, recorder sessions, or plugin data.
Uninstalling the extension typically removes extension-managed local storage, subject to browser behavior.
7. Security
We aim to minimize data collection and keep sensitive configuration local to the browser whenever possible.
However, no software environment can guarantee absolute security. If you configure third-party AI providers, the
security of requests sent to those services depends in part on those providers and your chosen configuration.
8. Changes to This Policy
We may update this Privacy Policy from time to time to reflect product, permission, or compliance changes. The
updated version will be published with a revised "Last updated" date.
9. Contact
If you have questions about this Privacy Policy, contact: binhcoder02@gmail.com