Privacy Policy
This Privacy Policy explains what data TabHub (operated by tabhub.net) collects, why, where it is stored, and what choices you have. We try to collect the minimum necessary to operate the Service.
1. Two modes
TabHub has two modes that differ for privacy:
- Local-only (Free, no sign-in) — everything stays
in your browser's
chrome.storage.local. Nothing is sent to our servers. - Cloud sync (after Google sign-in) — your workspaces, spaces, collections, and saved URLs are sent to our backend so they can be available on other devices where you sign in.
2. What we collect when you sign in
| Data | Source | Why |
|---|---|---|
| Email address, display name, profile picture URL | Google ID token (Firebase Authentication) | Identify your account, address support email, render your avatar in the UI. |
| Your workspaces, spaces, collections, and saved URLs (titles, URLs, favicon URLs) | You — saved or imported into the extension | Sync across the devices where you sign in. |
| Subscription metadata (plan, status, current period end, Stripe customer / subscription ID) | Stripe webhooks | Enable Pro features for paying customers and surface subscription state in-app. |
| Audit log of billing events | Stripe webhooks | Reconcile payments and resolve disputes. |
3. What we do not collect
- Card numbers, CVC, or expiry. Card details are entered directly into Stripe-hosted Checkout and never reach our servers.
- Your browsing history, the contents of pages you visit, or any
page DOM. The extension does not request
<all_urls>. - Telemetry, usage analytics, advertising IDs, or behavioural profiles. There are no third-party trackers in the extension or on this website.
- Any data from the local-only mode. If you do not sign in, nothing leaves your machine.
4. Browser permissions
| Permission | Used for |
|---|---|
tabs | Read titles, URLs, and favicons of your open tabs (so you can save them) and create / focus tabs when you click a saved URL. |
storage | Persist your workspaces and collections in the browser's local storage. |
history | Allow the command palette to
also surface results from your browser history. The query is sent
to chrome.history.search locally; it never leaves your
computer. Pro-tier only. |
identity | Open the Google sign-in flow in a tab. Used only when you initiate sign-in. |
5. Where data is stored
- Browser local storage — your full state, on every device.
- Cloudflare D1 (United States edge database) — a JSON snapshot of your synced workspaces / spaces / collections / URLs, plus subscription metadata, keyed to your Firebase user ID.
- Stripe — your billing details, including card data, processed by Stripe under its Privacy Policy. We see only the metadata Stripe returns to us.
- Firebase / Google — your authentication identity, processed by Google under its Privacy Policy.
6. Sub-processors
We share data with the following providers strictly to operate the Service:
- Stripe, Inc. — payments, subscription management.
- Google LLC / Firebase — authentication.
- Cloudflare, Inc. — application hosting (Workers), database (D1), key-value cache (KV), static site (Pages).
We do not sell, rent, or trade your personal data to anyone.
7. Retention
Synced state is kept until you delete your account, after which we
purge your users, user_state, and
subscriptions rows; CASCADE delete removes related records.
Billing audit logs (billing_events) are retained for as
long as required by tax and accounting law in our jurisdiction (usually
7 years), with personal identifiers minimised.
8. Your rights
Depending on where you live, you may have the right to access, correct, export, or delete your personal data. You can exercise these directly inside the extension:
- Access / export — Settings → Export backup produces a JSON file with your full record.
- Delete — Account → Delete account removes your cloud data and cancels active subscriptions.
For requests we cannot fulfil in-app, email support@tabhub.net.
9. Security
All client traffic is over HTTPS / TLS. API calls are authenticated with short-lived Firebase ID tokens, verified server-side on every request. Card data is handled exclusively by Stripe (PCI DSS Level 1 service provider), so it is out of scope for our infrastructure. Cloudflare provides DDoS mitigation and a managed WAF at the edge.
10. International transfers
Our infrastructure runs on Cloudflare's global edge network and our payment processor (Stripe) and identity provider (Google) operate internationally. By using the Service you consent to the transfer and processing of your data in the countries where these providers operate.
11. Children
TabHub is not directed to children under 13. We do not knowingly collect personal data from children under 13. If you believe a child has provided us data, please contact us and we will delete it.
12. Changes
We may update this Policy from time to time. Material changes are announced in-app or by email at least 14 days before taking effect.
13. Contact
Privacy questions or requests: support@tabhub.net.