Afilar | Privacy policy

 

Privacy Policy for Hion Afilar Chrome Extension

Last Updated: February 20, 2026
Effective Date: February 20, 2026

Overview

Hion Afilar is a developer-focused Chrome extension designed to help web developers and SEO professionals analyze website performance, SEO metrics, Open Graph data, and save performance snapshots for comparison. This privacy policy explains what data the extension accesses, how it’s used, and your privacy rights.

Data Collection and Usage

What Data We Access

Hion Afilar accesses the following data only from the active tab when you explicitly open the extension:

  1. Page Performance Metrics
    • Navigation timing data (page load times, TTFB, etc.)
    • Data accessed via browser’s Performance API
    • Used to display performance analysis to you
  2. SEO Information
    • Page title and meta tags
    • Heading structure (H1, H2, etc.)
    • Canonical URLs and robots directives
    • Extracted directly from the current page’s HTML
  3. Open Graph Metadata
    • Social media preview tags (og:title, og:image, etc.)
    • Twitter Card metadata
    • Used to show how the page appears when shared on social media
  4. Page URL and Content
    • Current page URL for context
    • Used to identify and organize your saved snapshots

How We Use This Data

  • Local Display Only: All data collected is displayed directly to you in the extension popup
  • Local Storage: Performance snapshots you save are stored locally in your browser using Chrome’s storage API
  • No Remote Storage: We do not store, transmit, or collect any of your data on remote servers
  • No Analytics: We do not collect usage statistics, analytics, or telemetry

Third-Party API Usage

Google PageSpeed Insights API:

  • When you run a PSI audit, the extension sends the current page URL to Google’s PageSpeed Insights API
  • You must provide your own API key (obtained from Google Cloud Console)
  • Your API key is stored locally in your browser only
  • Data sent: Only the page URL you’re analyzing
  • Data received: Performance metrics and optimization suggestions from Google
  • This is governed by Google’s Privacy Policy

Permissions Explained

Why We Need These Permissions

activeTab Permission:

  • Required because: The extension analyzes the website you’re currently viewing when you click the extension icon
  • Used for: Reading performance data, SEO metadata, and Open Graph tags from the active page
  • NOT used for: Background tracking, data collection, or monitoring your browsing activity
  • Activation: Only when you explicitly click the extension icon on a tab

Note: This extension does NOT use broad <all_urls> permissions. It only accesses the specific tab you’re viewing when you open the extension.

scripting Permission:

  • Allows the extension to execute scripts to collect performance and SEO data from the page
  • Only runs when you trigger an audit

storage Permission:

  • Stores your API key locally
  • Saves performance snapshots you create
  • All data stays on your device

tabs Permission:

  • Allows reading the current tab URL and title
  • Required for proper functioning of performance audits

Data Storage and Security

Local Storage

  • All extension data is stored locally in your browser using Chrome’s storage APIs
  • Performance snapshots: chrome.storage.local
  • Session data: chrome.storage.session (cleared when browser closes)
  • Your PSI API key: chrome.storage.local (encrypted by Chrome)

Data Retention

  • You control all stored data
  • Delete snapshots anytime using the “Delete” or “Delete All” buttons
  • Remove your API key anytime from the Settings page
  • Uninstalling the extension removes all stored data

Security Measures

  • No external data transmission except to Google PSI API (when you explicitly run audits)
  • API keys stored using Chrome’s secure storage
  • Content Security Policy prevents code injection attacks
  • No use of eval() or unsafe dynamic code execution

Your Rights and Control

You have complete control over your data:

  1. View Your Data: All data is displayed in the extension interface
  2. Delete Your Data:
    • Delete individual snapshots
    • Clear all snapshots at once
    • Remove your API key from Settings
    • Uninstall the extension to remove everything
  3. Opt-Out of PSI: Simply don’t add an API key to avoid using Google’s PageSpeed Insights service

Third-Party Services

This extension interacts with the following third-party service:

Google PageSpeed Insights API

  • Purpose: Provides website performance analysis
  • Data shared: Page URLs you choose to analyze
  • Privacy Policy: https://policies.google.com/privacy
  • You control when this service is used by choosing whether to run PSI audits

We do not have any other third-party integrations, analytics, or tracking services.

Children’s Privacy

This extension is intended for web developers and SEO professionals. We do not knowingly collect information from anyone under 13 years of age. The extension is not designed for or marketed to children.

Changes to This Policy

We may update this privacy policy from time to time. When we do:

  • The “Last Updated” date at the top will be revised
  • Significant changes will be noted in the extension’s update notes
  • Continued use of the extension after changes constitutes acceptance of the new policy

Data Breach Notification

Since we do not collect, store, or transmit user data to our servers, there is no risk of a data breach from our systems. Your data remains on your device under your control.

International Users

This extension is available worldwide. All data processing happens locally on your device. If you use Google’s PageSpeed Insights API, that data processing is subject to Google’s privacy policy and international data transfer practices.

Contact Information

For questions, concerns, or requests regarding this privacy policy or your data:

  • Developer: Geniem Oy / Hion
  • Email: analytics@hiondigital.com

This extension complies with:

  • Chrome Web Store Developer Program Policies
  • General Data Protection Regulation (GDPR) – EU users
  • California Consumer Privacy Act (CCPA) – California users
  • Other applicable data protection laws

Summary (TL;DR)

✅ We collect: Performance and SEO data from pages you analyze
✅ Stored: Locally on your device only
✅ Transmitted: Only to Google PSI API when you run audits (with your API key)
✅ Shared: Never. Your data stays with you
✅ Analytics: None. We don’t track you
✅ Control: You can delete all data anytime
✅ Purpose: Help you analyze website performance and SEO

Your privacy is important to us. This extension is built with privacy-first principles and gives you complete control over your data.

 

Kysy tai etsi hakusanoilla tekoälyavustetulta hakukoneeltamme.