Privacy Policy

Summary

Widget Burger is a widget marketplace and browser new tab extension. We use information to let you sign in, install configured widget instances, sync your new tab setup, and keep the service secure.

We do not sell personal information, serve interest-based ads, or collect your general browsing history for advertising or profiling.

Information We Collect

Account and authentication data

When you sign in with Google, we receive account information such as your name, email address, profile image if provided, and provider account id. Better Auth creates session records and authentication cookies so you can stay signed in. Session records may include technical details such as IP address, browser or user agent, timestamps, session tokens, and expiry times.

Widget and sync data

If you add widgets or use extension sync, we store the widget instances tied to your account. This can include widget ids, per-widget configuration values, tab names, layouts, hidden or frameless display settings, theme and font preferences, color choices, sync timestamps, and the active tab id. Some widget configuration values may be personal if you enter personal content, such as notes, snippets, links, labels, postal codes, country choices, timezones, amounts, or Elewave origins.

Extension local data

The extension stores new tab data in browser storage and IndexedDB, including cached widgets, local layouts, preferences, widget state, and local wallpapers. Local wallpaper image files are kept in your browser storage and are not included in the server sync snapshot.

Technical and request data

Our Cloudflare-hosted app and APIs receive ordinary request data needed to operate the service, such as request headers, IP address, timestamps, routes requested, and error or security logs.

How We Use Information

• To authenticate your account and keep your session active.
• To save, sync, and return your installed widget instances and extension configuration.
• To provide browser extension features such as cached widgets, local layout state, and reload/sync behavior.
• To secure the service, troubleshoot errors, prevent abuse, and protect users.
• To respond to support, privacy, legal, or account requests.
• To comply with law and enforce our Terms of Service.

Browser Extension Permissions

The extension asks for storage permission to keep your new tab setup in the browser. It asks for cookies permission so it can detect your Widget Burger session and sync with widgetburger.com. Some Elewave widgets may read an Elewave session cookie from the configured Elewave origin so they can request the next activity or activity panel you chose to display.

The extension has host access for widgetburger.com and selected wallpaper image sources. API-backed widgets use optional host permissions for specific providers, and the extension requests those permissions only when synced widgets need them.

Third-Party Services and Data Providers

We use Cloudflare Workers, Worker assets, and Cloudflare D1 to host the app and store account, session, widget, and sync data. We use Google OAuth for sign-in when it is enabled. These providers process data under their own terms and privacy policies.

Some widgets fetch data directly from third-party sources selected for that widget, such as Open-Meteo, Frankfurter, USGS, Hacker News, Nager.Date, Wikimedia, Numbers API, OpenStreetMap Nominatim, Sunrise-Sunset, Unsplash, Picsum, or Elewave. When a widget calls a provider, that provider may receive request details and configured values needed for the widget, such as a postal code, country, currency pair, timezone, origin, or search parameters. Their own terms and privacy policies apply.

How We Share Information

We share information only as needed to provide and protect the service: with infrastructure and authentication providers, with widget data providers when you use widgets that call them, with legal or safety recipients when required, and with successors if Widget Burger is involved in a merger, acquisition, financing, reorganization, or sale of assets.

We do not sell personal information and we do not use synced widget data for third-party advertising.

Cookies and Local Storage

Widget Burger uses authentication cookies with the auth prefix to recognize signed-in users. The extension uses browser storage and IndexedDB for local new tab data. You can clear local extension data through your browser, but doing so may remove layouts, cached widgets, preferences, widget state, and local wallpapers from that browser.

Retention

We keep account, widget, and extension sync data while your account remains active or while needed to provide the service, comply with law, resolve disputes, prevent abuse, or enforce our terms. Session data is kept for the life of the session and a reasonable security period afterward. Local extension data remains in your browser until you delete it or uninstall the extension.

Your Choices and Rights

• You can browse the public widget marketplace without signing in.
• You can sign out, uninstall the extension, clear extension storage, or revoke optional host permissions in your browser.
• You can revoke Google OAuth access from your Google account settings.
• You can ask to access, correct, export, or delete account data we hold about you.
• You may have additional privacy rights depending on where you live, including rights to object, restrict processing, or lodge a complaint with a data protection authority.

To make a privacy request, contact privacy@widgetburger.com.

Security

We use HTTPS, authentication cookies, scoped browser permissions, and Cloudflare-hosted infrastructure to protect the service. No online service is completely secure, so you should keep your Google account secure and sign out on shared devices.

Children

Widget Burger is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child provided personal information to us, contact us so we can review and delete it when appropriate.

International Processing

Widget Burger and its providers may process information in countries other than where you live. When privacy laws require safeguards for transfers, we rely on appropriate legal mechanisms provided by our vendors or applicable law.

Changes and Contact

We may update this policy as the product, providers, or legal requirements change. If we make material changes, we will take reasonable steps to make the new policy available before the changes apply.

Questions or requests can be sent to privacy@widgetburger.com.