Privacy Policy

Oh My Browser ("OMB", "we", or "the Service") provides an MCP-native browser access channel for AI agents. This policy explains how OMB collects, uses, stores, and shares personal information when you use our website, browser extension, CLI, and MCP server. We comply with China's Personal Information Protection Law (PIPL) and, where applicable, the EU General Data Protection Regulation (GDPR).

Operator: the Oh My Browser team. For questions about this policy, email admin@omb.org.cn.

Browser extension specific: when the agent triggers an action, the OMB extension reads the content of the active tab you are looking at (DOM text, element structure, an optional screenshot) and that tab's URL so it can answer the agent's request. This content is forwarded as a single-shot response to your AI client (e.g. Claude Desktop / Cursor) and is not retained on OMB servers. See section 3 ("What we do NOT collect") for the boundary.

Authentication tokens: a connection token, refresh token, and session id used to pair the extension with the OMB CLI running on your machine. Stored locally in the extension and the CLI only.

Account info: email, display name, password (stored only as a bcrypt hash). When you sign in with GitHub we additionally store your GitHub user ID, username, and avatar URL.

Usage logs: each API call records a request ID, endpoint, token usage, provider, estimated cost, and cache-hit status.

Query content: by default only a SHA hash is stored (queryTextStoragePolicy=hash_only); plaintext is never retained. You may opt into plain_text mode for personal debugging — this is off by default.

Device & client: CLI startup reports its version, operating system, and extension version. Website pageviews record path, referer, locale, and a SHA hash of the User-Agent — we do not store the raw User-Agent.

Telemetry events: install funnel, first-login, and error events are tracked using an anonymous ID (a random UUID generated on first launch). The anonymous ID is linked to your user account only after you sign in.

Site behavior memory: when an agent acts on a site (e.g. logging into Xiaohongshu, reading Zhihu), OMB may cache reusable selectors / action templates for that site (DOM structure only — not the account you logged in with or the content you viewed). You can inspect and delete this in the dashboard.

Your browser session and cookies stay on your machine. OMB drives your already-logged-in browser via the extension; cookies, login state, account passwords, and browsing history are stored in your local Chrome / Edge — they are never uploaded to OMB servers. This is OMB's core security design: we cannot see which sites you are logged into or browsing.

OMB servers only see the MCP-protocol commands the agent sends (e.g. "search X", "read URL Y") and the resulting page summary. The execution itself happens inside your local browser.

• Provide and maintain the service (auth, quotas, billing, cache)
• Diagnose and fix issues (error logs, performance monitoring)
• Enforce usage limits (free-tier daily quota)
• Improve the product (aggregated, anonymous telemetry)
• Send account-related email (password reset, security alerts)
• Comply with legal obligations

• GitHub OAuth — for login. We receive only your public email, user ID, username, and avatar. Subject to GitHub's privacy statement.
• SMTP email (126.com) — used solely to send password reset emails containing a one-time token link.
• Sentry (error monitoring) — collects runtime error stacks and anonymous context. We do not send email, password, or plaintext queries to Sentry.
• Chrome Web Store — distributes the extension. Install statistics come from Google; OMB does not collect them directly.

We do not sell your personal information to anyone. We do not share it with third parties except as listed above and where required by law.

• Data is hosted in mainland China (Aliyun).
• Passwords are bcrypt-hashed; plaintext is never stored.
• JWTs are HMAC-signed; tokens are TLS-encrypted in transit.
• User-supplied model API keys are AES-256 encrypted at rest.
• The V1 wire protocol uses HKDF-derived per-session channel keys.

• Account data: hard-deleted 30 days after account deletion.
• Usage logs: retained up to 12 months, then aggregated to daily rollups.
• Refresh tokens: 30 days, then expired.
• Device codes (CLI login): 10-minute one-time use.
• Telemetry events: 12 months.
• Pageviews: 6 months.

Under PIPL (and GDPR where applicable) you have the right to:

• Access and correct your personal information (dashboard → account)
• Delete your account and associated data (dashboard → delete)
• Export your usage data
• Withdraw consent (unbind GitHub, delete stored API keys)
• Lodge a complaint with your local data protection authority

Email admin@omb.org.cn to exercise these rights. We respond within 15 business days.

The OMB website uses essential cookies for session and CSRF protection. We do not use advertising trackers and we do not embed third-party analytics scripts (pageviews are recorded by our own API). The browser extension uses chrome.storage.local to cache site memory and auth state — that data stays on your machine.

OMB is not directed at users under 14. If you believe a minor has provided us personal information, please contact us so we can delete it.

We may update this policy as the service evolves. For material changes we will notify users by email or dashboard banner. Continued use constitutes acceptance.

The OMB browser extension is distributed through the Chrome Web Store and complies with Google's Limited Use requirements. Specifically:

• We use the user data we collect only for the extension's core function: connecting your AI agent to your already-logged-in browser to execute the actions you ask for.
• We do not sell or transfer user data to third parties, except for the services listed in section 5 above and as required by law.
• We do not use or transfer user data for purposes unrelated to that core function (including, but not limited to, advertising, personalized push, or third-party analytics).
• We do not use or transfer user data to determine creditworthiness or for lending purposes.

Oh My Browser
Email: admin@omb.org.cn