/ deck / lab / x / privacy

Privacy policy.

The X extension runs entirely in your browser. We don't collect, transmit, or sell user data of any kind.

Last updated: 2026-05-14

Plain-English summary. The extension reads X pages in your own browser, lets you act on what's already on screen (download a video, save a thread, export your bookmarks, capture your following list), and writes results to your local disk. Nothing leaves your computer except attachment fetches to X's own CDN, using your existing browser session.

What stays local

Everything the extension does happens inside your browser session. That includes:

Reading rendered X pages — DOM (popup tools) and X's own GraphQL responses (a MAIN-world fetch / XMLHttpRequest patch that observes the same responses your browser already received).
Building ZIP archives of media you choose to export — bundled in-page and saved directly to your Downloads folder.
The bookmark index — captured tweet metadata (URLs, handle, tweet ID, your own tags) is stored via Chrome's chrome.storage.local. Tags never leave your browser.
Configuration: filter preferences, last-used options, the "Ask where to save" toggle.

What goes over the network

Only one network path exists, and it goes to X's own servers:

Attachment fetch (when you click Save or use a bulk-download). X CDN URLs (video.twimg.com, pbs.twimg.com) are fetched directly from X's servers using your existing browser session. No third party is involved.

The extension does not contact any analytics, telemetry, or first-party server. There is no backend. No Google services, no translation, no metrics endpoint.

Permissions, in plain English

storage — for the local bookmark index, your tags, and UI preferences.
downloads — to save videos, images, ZIPs, Markdown threads, and CSV/JSON exports via Chrome's download manager.
activeTab — so the popup can talk to the X tab you're currently looking at.
scripting — required to inject the MAIN-world page-context patch at document_start so it captures GraphQL responses before X's bundles execute.
tabs — to open the in-extension media player and thread viewer in new tabs.
offscreen — for a hidden helper document that converts fetched media bytes to blob: URLs (service workers can't call URL.createObjectURL themselves).
host_permissions for x.com, twitter.com, and *.twimg.com — required to read X's DOM, observe its GraphQL responses, and fetch attachments for the bulk exporters.

What we don't do

No tracking. No analytics. No cookies set by the extension.
No data sold or shared with third parties.
No account creation, no sign-in, no credentials handled.
No background scraping. The extension only acts when you click a button (Scan, Save, Export, Download).
No use of your X authentication token. The extension never reads localStorage or other credential stores.
No scraping of accounts you don't already have access to — the extension only sees what your existing session can see.

Data retention

The bookmark index and configuration live locally. You can clear the index any time from the extension popup (Clear index in the Bookmark Search tool), or remove the extension entirely via chrome://extensions to wipe everything.

Children

This extension is not directed at children under 13. It operates on X's web client, which has its own age requirements.

Changes

If this policy materially changes, the date at the top will be updated and a note added to the extension page.

Contact

Questions: open an issue or reach out via /contact.