Ebors · Privacy policy
Privacy policy
This is the privacy policy for the Ebors Android browser (“the app”). The short version: the app does not collect, transmit, or share any of your personal information. The long version is below.
Summary
- No analytics, telemetry, crash reporting, or advertising SDKs.
- No account, no sign-in, no cloud sync.
- Browsing history, bookmarks, downloads, and settings stay on your device.
- Private (incognito) tabs use an isolated profile that is wiped when you close the last private tab or restart the app.
- Search suggestions are optional and, when enabled, send the typed address-bar text to your selected search engine.
- Translate is user-initiated and sends the current page URL to Google Translate’s page proxy.
- The only automatic background network call the app itself may make is an optional, signed, rate-limited block-list update fetch — and only if the build was configured with an update URL.
What the app collects
The app stores the following on your device only:
- Browsing history — URL and title of pages you visit, capped at the most recent 500 entries. You can disable this in Settings, and clear it from Library → History.
- Bookmarks — pages you explicitly save.
- Downloads metadata — filename, source URL, size, status. The files themselves live in your device’s Downloads folder.
- Cookies and site data — same as any browser, controlled by the websites you visit. Private tabs have their own isolated cookie jar.
- Settings — your preferences (theme, search engine, block-list toggles, etc.).
None of the above is ever sent to a server operated by the developer.
What leaves your device
The browser makes the network requests you initiate by visiting a web page or downloading a file. Those requests go directly to the page’s server, with the same headers any other Chromium-based browser would send. They are not proxied or relayed through the developer.
If Search suggestions are enabled, the text you type into the address bar is sent to your selected search engine to fetch suggestions. This is controlled in Settings and can be turned off.
If you choose Translate, the current page URL is opened through Google Translate’s public page proxy so Google can fetch and translate that page. Translation is not performed by a server operated by the developer.
Android System WebView may use platform services such as Safe Browsing to check URLs or resources for known unsafe content. Those checks are part of the device WebView/Google Play services stack, not an Ebors analytics or tracking SDK.
Voice input for websites that use the Web Speech API is handled through your device’s installed speech-recognition service. If you grant microphone access, audio may be processed by that service according to its provider’s policy.
The only automatic background request the app makes on its own is an optional update check for the bundled ad/tracker block list. This is disabled unless the build is configured with an update URL and signing key. When enabled it runs at most once every 24 hours, fetches a cryptographically signed JSON file over HTTPS, and does not send any of your browsing data.
Permissions and what they’re used for
- Internet, network state — required to load web pages.
- Camera, microphone, location — only used when a web page you are visiting requests access (for example, a video call). The browser shows an in-app prompt before any of these are granted. Microphone access may also be used for website voice input through the device speech-recognition service when you approve it.
- Storage / downloads — used to save files you choose to download.
- Post notifications — used to show download progress in the notification shade. You can deny it.
- Request install packages — used only to hand off an APK you have downloaded to Android’s installer when you tap “Install” on a downloaded file. The browser does not install anything on its own.
- Foreground service (data sync) — keeps downloads running while the app is backgrounded.
- Foreground service (media playback) — keeps website audio/video controls visible while media continues playing in the background.
- Modify audio settings — normal Android permission used for WebRTC audio routing when websites use calling features.
Downloaded files
Downloaded files are saved to your device’s public Downloads folder. They are visible to other apps that have storage access, just like any other file you put there. The browser does not upload or scan them.
Third parties
The app does not embed any third-party analytics, advertising, or crash-reporting SDK. The libraries it does include (AndroidX, Material Components, OkHttp, Kotlin standard library, ZXing Android Embedded) are general-purpose UI, networking, and QR-scanning utilities and do not phone home on their own.
Web pages you visit may, of course, set their own cookies and run their own analytics. The browser’s built-in block list cuts down on the most common ad/tracker requests, but the web is the web — if you visit a site that uses Google Analytics, that site, not the browser, is the data controller.
Children
The app is not directed at children under 13 and does not knowingly collect any data from them. Because the app collects no personal data from anyone, the practical impact of this statement is small, but it is included here to comply with Google Play’s policy disclosure requirements.
Changes to this policy
If this policy ever changes, the “Last updated” date below will move and any meaningful change will be called out in the app’s release notes.
Contact
Questions about this policy: ThimmaiahKK@proton.me.
Last updated: 2026.