Sidekick AI Privacy Policy

Last updated: June 2, 2026
Applies to: Sidekick AI Firefox extension (“the extension”)



1. Overview

Sidekick AI is a Firefox sidebar extension that lets you chat with AI about the web page you are currently viewing.

The extension does not send user data to a backend server operated by the developer. In API mode, requests go directly from your browser to the AI provider you choose, using your own API key (BYOK).



2. Data We Process

2.1 Data you provide

| Data | Where stored | Purpose |
|------|--------------|---------|
| API keys (OpenAI, Google Gemini, Anthropic, Groq, Cerebras) | Browser storage.local (on device) | Authenticate API mode requests |
| Chat messages | Session memory / request body | Generate AI responses |
| UI language, model choice, recent prompts (up to 3) | Browser storage.local | Settings and convenience |

2.2 Data read automatically

| Data | Source | Purpose |
|------|--------|---------|
| Active tab URL and page title | Firefox tabs API | Show current page context |
| Page body text | page-extract.js content script | Sent to AI in API mode; copied to clipboard in Web mode |

Body text is extracted from main content areas when possible, filtered for noise, and capped at about 12,000 characters.
System pages (about:, moz-extension:, etc.) are not read.

2.3 Web mode

Web mode embeds official websites (ChatGPT, Claude, Gemini, Copilot) in a sidebar iframe.
Login, chat, billing, and data handling in Web mode are governed by each service’s terms and privacy policy.



3. Data Transmission

API mode

When you send a message, the following may be transmitted over HTTPS only to the AI provider you selected:

• Your message
• Extracted page URL, title, and body (truncated)
• Recent API-mode conversation history (sliding window)

Possible endpoints:

• api.openai.com (OpenAI, Groq, Cerebras — OpenAI-compatible APIs)
• generativelanguage.googleapis.com (Google Gemini)
• api.anthropic.com (Anthropic)

Developer servers

The extension does not collect or transmit user data to remote servers operated by the developer.

Other external links

• Ko-fi (optional support link) — only when you click it
• External links in Settings (e.g. API key signup pages)

4. Local Storage

Settings, API keys, recent prompts, and preferences are stored only in your Firefox profile via browser.storage.local.
Removing the extension removes this data according to Firefox behavior.
You can change or overwrite API keys in Settings at any time.



5. Permissions

| Permission | Why |
|------------|-----|
| tabs | Refresh page context when you switch tabs or URLs |
| scripting / content scripts | Extract readable page body |
| storage | Save API keys, settings, recent prompts |
| activeTab | Access the active tab |
| declarativeNetRequest | Adjust response headers for Web mode iframes (limited domains only) |
| <all_urls> | Auto-track page content on normal HTTP/HTTPS pages |



6. Children

The extension is not directed at children under 13, and we do not knowingly collect their personal information.



7. Changes

We may update this policy by revising the “Last updated” date and notifying users via the AMO listing or support channels.



8. Contact

Privacy questions: [Contact — add your email or GitHub Issues URL]



9. Third-party policies

When you use API or Web mode, the provider’s policies also apply:

• OpenAI Privacy Policy
• Google Privacy Policy
• Anthropic Privacy Policy
• Groq Privacy Policy
• Microsoft Privacy Statement