Chrome Extension ยท Privacy Policy

Burn Web Clipper โ€” Privacy Policy

Last updated: April 22, 2026

This privacy policy describes how the Burn Web ClipperChrome extension (the "Extension") handles user data. The Extension is developed and operated by Burn 451 ("we", "us").

The Extension exists for one purpose only: to save the URL and title of the current browser tab to your personal Burn 451 account when you explicitly click the "Save to Burn" button. Everything below follows from that single purpose.

1. What we collect

When โ€” and only when โ€” you click the "Save to Burn" button, the Extension sends the following to our server:

  • The URL of your active tab at that moment.
  • The title of the active tab page.
  • A constant string source: "chrome-web-clipper" so our backend can attribute which client saved the bookmark.

That's the full payload. We do not collect page content, selected text, DOM snapshots, cookies, form data, keystrokes, mouse activity, scroll position, or any other page data.

2. What we do NOT collect

  • Browsing history. The Extension has no access to your history or tabs you are not actively viewing when you click Save.
  • Page contents. No content scripts. No scraping of article text.
  • User activity. No analytics. No tracking of which sites you visit. No session replay.
  • Personally identifiable information. No email, name, IP-based profile, or device fingerprint is requested by the Extension itself.
  • Financial, health, location, or communication data. None of this is collected.
  • Third-party SDKs. The Extension ships with no analytics SDKs, no ad networks, no telemetry libraries.

3. How data is transmitted

Saves are sent over HTTPS to https://www.burn451.cloud/api/save, authenticated with the MCP token you pasted during setup. The request carries only the data described in section 1.

All JavaScript in the Extension is bundled in the extension package. The Extension does not fetch or execute remote code.

4. Authentication & storage

Your Burn MCP token is generated inside the Burn iOS app (Settings โ†’ MCP Server โ†’ Generate Token) and pasted once into the Extension popup. The token is stored inchrome.storage.sync, which Chrome encrypts and syncs across your Chrome profiles if you are signed into Chrome. The token never leaves your browser except as anAuthorization: Bearerheader on save requests to our server.

You can revoke the token at any time from the iOS app, which invalidates it server-side. You can also clear it from the Extension by clicking the "โ‹ฏ" icon in the popup.

5. Permissions, justified

  • activeTab. Used to read the URL and title of the tab you are currently viewing, only when you open the popup and click Save. This permission does not grant access to other tabs, your history, or page contents.
  • storage. Used to remember your Burn MCP token between popup sessions so you don't have to paste it every time you save a page.

The Extension requests no host permissions, runs no content scripts, and performs no background scraping. When the popup is closed, the Extension is idle.

6. What we do with saved data

The URL and title you choose to save are stored in your Burn account backend (Supabase). They appear in your Burn iOS app's Flame zone with a 24-hour countdown. This is the product you signed up for.

We do not sell, rent, share, or use this data for advertising. We do not use it to train machine learning models. We do not share it with third parties for any purpose unrelated to providing the Burn service.

7. Certified practices

Per Chrome Web Store developer program policy, we certify that:

  • We do not sell or transfer user data to third parties outside of approved use cases.
  • We do not use or transfer user data for purposes unrelated to the Extension's single purpose.
  • We do not use or transfer user data to determine creditworthiness or for lending purposes.

8. Deleting your data

You can delete Extension-related data in several ways:

  • Delete a saved bookmark: remove it inside the Burn iOS app.
  • Revoke the token: Burn iOS app โ†’ Settings โ†’ MCP Server โ†’ Revoke. The Extension will kick you back to the onboarding screen.
  • Clear local storage: click the "โ‹ฏ" icon in the popup to forget the token locally.
  • Delete your Burn account: open the Burn iOS app โ†’ Settings โ†’ Account โ†’ Delete Account. This removes all bookmarks, tokens, and account data from our backend.
  • Uninstall the Extension: right-click the Extension icon in Chrome โ†’ Remove. This removes the Extension and its local storage.

9. Children

The Extension is not directed at children under 13 and we do not knowingly collect data from them.

10. Changes to this policy

If we change this policy in a way that affects how the Extension handles user data, we will update the "Last updated" date and, for material changes, we will make reasonable effort to notify Extension users via a popup notice.

11. Contact

Questions, concerns, or a privacy-related request? Open an issue at github.com/Fisher521/burn451-web-clipper/issues or email support@burn451.cloud.