Legal
Privacy Policy — The Everything browser extension
Last updated: 2026-07-18
This Privacy Policy explains how The Everything (“we”, “us”) handles information in connection with The Everythingbrowser extension (the “Extension”) for Google Chrome and Microsoft Edge. It applies only to the Extension.
What the Extension does
The Everything is an AI assistant that helps you act inside your browser. When you ask it to, it can read the page you’re working on and carry out browser actions on your behalf (for example, navigating, filling forms, or extracting information). It works together with a companion application (“the local agent”) that runs on your own device.
Who controls your data
For most business deployments, your employer or organization deploys and administers The Everything and is the controller of your data; we act as a processor on their behalf under our agreement with them. If you installed it yourself, we are the controller. Contact your administrator first for questions about how your organization uses the Extension.
Information the Extension can access
Because of what it does, the Extension can access the following. It only does so when you have the Extension active and, for actions on a given site, only when you grant access to that site.
- Web page content and browsing activity. To assist you, the Extension can read the contents of pages you are actively using, the URLs and titles of your open tabs, and navigation events. This can include text you see on those pages.
- Actions you ask it to take. The instructions you give the AI and the actions it performs in the browser at your request.
- Account and sign-in information. If you sign in, we process the identity token issued by your Microsoft sign-in provider to authenticate you. We do not receive or handle your password.
- Extension settings. Your preferences are stored to make the Extension work.
- Local device communication. The Extension communicates with the local agent on your own device over a loopback connection (
localhost/127.0.0.1). This channel is used to run deeper page-inspection and automation tasks locally on your machine.
What we send to our servers, and what stays on your device
- Stays on your device / not uploaded. Raw screenshots, OCR text, the values you type into fields, full page HTML or source code, and the query-string portion of URLs are notuploaded to our servers. Deep page-inspection captures — including screenshots and any OCR — are processed locally by the local agent on your own device.
- Sent to our cloud service so the assistant can work. To decide and carry out the actions you ask for, the Extension sends a minimized, structured summary of the page you are working on — the visible labels and text of on-page controls, page titles, and URLs reduced to their origin and path (query strings stripped) — together with a non-reversible page fingerprint and the instructions you give the AI. This is sent to our cloud service (
api.the-everything-app.com) and to the AI model provider(s) that generate the response. It is necessary for the assistant to function. - We do not sell your personal information, and we do not use your browsing content for advertising. The Extension contains no advertising or third-party analytics or tracking code.
- We do not use your content to train our own AI models. Content is sent to our AI providers only to generate the responses you request.
How we use information
- To provide the assistant’s features and carry out the actions you request.
- To authenticate you and keep the Extension secure.
- To operate, maintain, debug, and improve the service.
Who we share it with
We share information only with:
- Service providers / sub-processors that operate the service on our behalf. Current sub-processors are:
- Microsoft Azure— cloud hosting for our service.
- Azure OpenAI and OpenAI— AI model providers that generate the assistant’s responses.
- Microsoft (Entra ID)— authentication / sign-in.
- Your organization’s administrators, where the Extension is deployed by an organization.
- Legal / safety, where required by law or to protect rights and safety.
We do not sell your data or share it with third parties for their own marketing.
Data retention
Your local settings stay on your device until you uninstall the Extension or clear them. Information sent to our service is kept only as long as needed to provide, secure, and debug the service, and is then deleted.
Security
We use industry-standard measures to protect information in transit and at rest, including encryption of data in transit. No method of transmission or storage is 100% secure.
Your choices and rights
- Site access:the Extension requests access to sites only when needed; you can grant or revoke access per site, and you can disable or remove the Extension at any time from your browser’s extensions page.
- Sign-out / uninstall: signing out and uninstalling stops further processing by the Extension and removes its local settings.
- Depending on where you live, you may have rights to access, correct, or delete your personal information. To exercise them, contact us at privacy@the-everything-app.com (or your administrator if your organization deployed the Extension).
Children
The Extension is not directed to children and is intended for workplace / business use.
Changes to this policy
We may update this policy; we will change the “Last updated” date above and, for material changes, provide notice as required.
Contact
The Everything
Contact us at privacy@the-everything-app.com.
See also: Why The Everything asks for each permission.