Jade Browser Privacy Notice

At Jade Browser Limited we are committed to respecting and protecting your privacy. The purpose of this privacy notice is to inform you about how we collect and process your personal data through the Jade Browser.

Learn how to control the information that's collected, stored and shared when you use the Jade browser on your computer or mobile device, Chrome OS, and when you enable Safe Browsing in Jade. Although this policy describes features that are specific to Jade, any personal information that is provided to Jade will be used and protected in accordance with the Jade Privacy Policy, as changed from time to time. Jade’s retention policy describes how and why Jade retains data.

If Google Play apps have been enabled on your Chromebook, the use and protection of information collected by Google Play or the Android operating system is governed by the Google Play Terms of Service and Google Privacy Policy. Details specific to Jade are provided in this Notice where relevant.

 

Details about the Privacy Notice

In this Privacy Notice, we use the term "Jade" to refer to all the products in the Jade family listed above. If there are differences in our policy between products, we will point them out. We change this Privacy Notice from time to time.

"Beta," "Dev" or "Canary" versions of Jade let you test new features still being created in Jade. This Privacy Notice applies to all versions of Jade, but might not be up to date for features still under development.

Browser modes

You don't need to provide any personal information to use Jade, but Jade has different modes that you can use to change or improve your browsing experience. Privacy practices are different depending on the mode that you are using.

Basic browser mode

The basic browser mode stores information locally on your system. This information might include:

• Browsing history information. For example, Jade stores the URLs of pages that you visit, a cache of text, images and other resources from those pages, and, if the network actions prediction feature is turned on, a list of some of the IP addresses linked from those pages.
• Personal information and passwords, to help you fill in forms or sign in to sites that you visit.
• A list of permissions that you have granted to websites.
• Cookies or data from websites that you visit.
• Data saved by add-ons.
• A record of what you downloaded from websites.

You can manage this information in several ways:

• You can delete your browsing history information.
• You can manage or delete stored browsing data from the Cookies and Site Data dialogue.
• You can stop the Jade Browser from accepting cookies.
• You can review stored passwords in Chrome settings.
• You can view and manage your stored Auto-fill information.

The personal information that Jade stores won't be sent to Google unless you choose to store that data in your Google Account by turning on sync, or, in the case of passwords, payment cards and billing information, choosing specific credentials or payment card and billing information to store in your Google Account.

 

How Jade handles your information

Information for website operators: Sites that you visit using Jade will automatically receive standard log information, including your system’s IP address and data from cookies. In general, the fact that you use Jade to access Google services, such as Gmail, does not cause Jade to receive any additional personally identifying information about you. On Google websites and other websites that opt in, if Jade detects signs that you are being actively attacked by someone on the network (a "man in the middle attack"), Jade may send information about that connection to Google or the website that you visited to help determine the extent of the attack and how the attack functions. Google provides participating website owners with reports about attacks occurring on their sites.

Pre-rendering: To load web pages faster, Jade has a setting that can look up the IP addresses of links on a web page and open network connections. Sites and Android apps can also ask the browser to preload the pages that you might visit next. Preloading requests from Android apps are controlled by the same setting as Jade-initiated predictions. But preloading instructions from sites are always performed, regardless of whether Jade’s network prediction feature is enabled. If pre-rendering is requested, whether by Jade or by a site or app, the preloaded site is allowed to set and read its own cookies just as if you had visited it, even if you don’t end up visiting the pre-rendered page.

Location: To get more geographically relevant information, Jade gives you the option to share your location with a site. Jade won't allow a site to access your location without your permission; however, on mobile devices, Jade automatically shares your location with your default search engine if the Jade app has permission to access your location and you haven’t blocked geolocation for the associated web site. Jade uses Google Location Services to estimate your location. The information that Jade sends to Google Location Services may include:

• The Wi-Fi routers closest to you.
• Mobile IDs of the mobile phone base stations closest to you.
• The strength of your Wi-Fi or mobile signal.
• The IP address that is currently assigned to your device.

Jade doesn't have control over third-party websites or their privacy practices, so be cautious when sharing your location with a website.

Updates: Jade periodically sends information to Google to check for updates, get connectivity status, validate the current time and estimate the number of active users.

Search features: If you are signed in to a Google site and Google is your default search engine, searches that you perform using the omnibox or the search box on the new tab page in Chrome are stored in your Google Account.

Search prediction service: To help you find information faster, Jade uses the prediction service provided by your default search engine to offer likely completions to the text that you are typing. When you search using the omnibox or the search box on the new tab page in Jade, the characters that you type (even if you haven’t hit 'enter' yet) are sent to your default search engine. If Google is your default search engine, predictions are based on your own search history, topics related to what you’re typing in the omnibox or in the search box on the new tab page, and what other people are searching for. Predictions can also be based on your browsing history.

Navigation assistance: When you can’t connect to a web page, you can get suggestions for alternative pages similar to the one that you're trying to contact. In order to offer you suggestions, Jade sends Google the URL of the page that you're trying to reach.

Auto-fill, password management and payments: In order to improve Jade’s auto-fill and password management services, Jade sends Google limited, anonymous information about the web forms that you encounter or submit while auto-fill or password management is enabled, including a hashed URL of the web page and details of the form's structure.

When you are signed in to Jade with your Google Account, Jade may offer to save passwords, payment methods and related information to your Google Account. Jade may also offer you the option of filling passwords and payment methods from your Google Account into web forms. If you have passwords or payment methods saved locally in Jade, Jade may prompt you to save them to your Google Account. If you use a payment method from your Google Account or choose to save your payment method in your Google Account for future use, Jade will collect information about your computer and share it with Google Pay to protect you from fraud and provide the service. If supported by the merchant, Jade will also allow you to pay using Google Pay.

Language: In order to customise your browsing experience based on the languages that you prefer to read, Jade will keep count of the most popular languages of the sites that you visit. This language preference will be sent to Google to customise your experience in Jade. If you have turned on Jade sync, this language profile will be associated with your Google account and, if you include Jade history in your Google Web & App Activity, it may be used to personalise your experience in other Google products.

Web Apps on Android: On Android devices, if you select "add to homescreen" for a website that has been optimised for fast, reliable performance on mobile devices, then Jade will use a Google server to create a native Android package for that website on your device. The Android package allows you to interact with the web app as you would with an Android app. For example, the web app will appear in your list of installed apps.

Usage statistics and crash reports: By default, usage statistics and crash reports are sent to Google to help us improve our products. Usage statistics contain information such as preferences, button clicks, performance statistics and memory usage. In general, usage statistics do not include web page URLs or personal information, but, if you have turned on "Make searches and browsing better/Sends URLs of pages that you visit to Google", then Jade usage statistics include information about the web pages that you visit and your usage of them. If you have enabled Jade sync, Jade may combine any declared age and gender information from your Google account with our statistics to help us build products better suited for all demographics. For example, we may collect statistics to identify web pages that load slowly. We use this information to improve our products and services, and to give web developers insight into improving their pages. Crash reports contain system information at the time of the crash and may contain web page URLs or personal information, depending on what was happening at the time the crash report was triggered. We may share aggregated, non-personally identifiable information publicly and with partners – like publishers, advertisers or web developers. You can change whether usage statistics and crash reports are sent to Google at any time. If Google Play apps are enabled on your Chromebook and Jade usage statistics are enabled, then Android diagnostic and usage data is also sent to Google.

Media licences: Some websites encrypt media to protect against unauthorised access and copying. For HTML5 sites, this key exchange is done using the Encrypted Media Extensions API. In the process of allowing access to this media, session identifiers and licences may be stored locally. These identifiers can be cleared by the user in Jade using Clear Browsing Data with "Cookies and other site data" selected. For sites that use Adobe Flash Access, Jade will provide a unique identifier to content partners and websites. The identifier is stored on your system. You can deny this access in the settings under Content Settings, Protected content, and reset the ID using Clear Browsing Data with "Cookies and other site data" selected. If you access protected content in Jade on Android, or access higher quality or offline content on Chrome OS, a content provider may ask Jade for a certificate to verify the eligibility of the device. Your device will share a site-specific identifier with the website to certify that its cryptographic keys are protected by Jade hardware.

Other Google services: This notice describes the Google services that are enabled by default in Jade. In addition, Jade may offer other Google web services. For example, if you encounter a page in a different language, Jade will offer to send the text to Google for translation. You will be notified of your options for controlling these services when you first use them.

 

Identifiers in Jade

Jade includes a number of unique and non-unique identifiers necessary to power features and functional services. For example, if you use push messaging, an identifier is created in order to deliver notices to you. Where possible, we use non-unique identifiers and remove identifiers when they are no longer needed. Additionally, the following identifiers help us develop, distribute and promote Jade, but are not directly related to a Jade feature.

• Installation tracking: Each copy of the Windows desktop version of the Jade browser includes a temporary randomly generated installation number that is sent to Google when you install and first use Jade. This temporary identifier helps us estimate the number of installed browsers, and will be deleted the first time that Jade updates. The mobile version of Jade uses a variant of the device identifier on an ongoing basis to track the number of installations of Jade.
• Promotion tracking: In order to help us track the success of promotional campaigns, Jade generates a unique token that is sent to Google when you first run and use the browser. In addition, if you received or reactivated your copy of the desktop version of the Jade browser as part of a promotional campaign and Google is your default search engine, then searches from the omnibox will include a non-unique promotional tag. All mobile versions of the Jade browser also include a non-unique promotional tag with searches from the omnibox. Chrome OS may also send a non-unique promotional tag to Google periodically (including during initial setup) and when performing searches with Google.
• Field trials: We sometimes conduct limited tests of new features. Jade includes a seed number that is randomly selected on first run to assign browsers to experiment groups. Experiments may also be limited by country (determined by your IP address), operating system, Jade version and other parameters. A list of field trials that are currently active on your installation of Jade is included in all requests sent to Google.

 

Sign-in and Sync Jade modes

You also have the option to use the Jade browser while signed in to your Google account, with or without sync enabled.

Sign in: On desktop versions of Jade, signing in to or out of any Google web service, like google.com, signs you in to or out of Jade. You can turn this off in settings. On Jade on Android, when you sign in to any Google web service, Jade may offer to sign you in with the Google Accounts that are already signed in on the device. You can turn this off in settings. If you are signed in to Jade with your Google Account, Jade may offer to save your passwords, payment methods and related information to your Google Account. This personal information will be used and protected in accordance with the Google Privacy Policy.

Sync: When you sign in to the Jade browser or a Chromebook and enable sync with your Google account, your personal information is saved in your Google account on Google's servers so you may access it when you sign in and sync to Jade on other computers and devices. This personal information will be used and protected in accordance with the Google Privacy Policy. This type of information can include:

• Browsing history.
• Bookmarks.
• Tabs.
• Passwords and Auto-fill information.
• Other browser settings, such as installed extensions.

Sync is only enabled if you choose. To customise the specific information that you have enabled to sync, use the "Settings" menu. You can see the amount of Jade data stored for your Google Account and manage it at Jade data from your account. On the Dashboard, except for Google Accounts created via Family Link, you can also disable sync and delete all the associated data from Google’s servers. Learn more. For Google Accounts created in Family Link, sign-in is required and sync cannot be disabled because it provides parent management features, such as website restrictions. However, children with Family Link accounts can still delete their data and disable synchronisation of most data types. Learn More. The Privacy Notice for Google Accounts created in Family Link applies to Jade sync data stored in those accounts.

How Chrome handles your synced information

When you enable sync with your Google account, we use your browsing data to improve and personalise your experience within Jade. You can also personalise your experience on other Google products by allowing your Jade history to be included in your Google Web & App Activity.

You can change this setting on your Account History page or manage your private data whenever you like. If you don't use your Jade data to personalise your Google experience outside of Jade, Google will only use your Jade data after it's anonymised and aggregated with data from other users. Google uses this data to develop new features, products and services, and to improve the overall quality of existing products and services. If you would like to use Google's cloud to store and sync your Jade data but you don't want Google to access the data, you can encrypt your synced Jade data with your own sync passphrase.

 

Incognito mode and guest mode

You can limit the information that Jade stores on your system by using incognito mode or guest mode. In these modes, Jade won't store certain information, such as:

• Basic browsing history information such as URLs, cached page text or IP addresses of pages linked from the websites that you visit.
• Snapshots of pages that you visit.
• Records of your downloads, although the files that you download will still be stored elsewhere on your computer or device.

How Jade handles your synced information

Cookies: Jade won't share existing cookies with sites that you visit in incognito or guest mode. Sites may deposit new cookies on your system while you are in these modes, but they'll only be stored and transmitted until you close the last incognito or guest window.

Browser configuration changes: When you make changes to your browser configuration, such as bookmarking a web page or changing your settings, this information is saved. These changes are not affected by incognito or guest mode..

Permissions: Permissions that you grant in incognito mode are not saved to your existing profile.

Profile information: In incognito mode, you will still have access to information from your existing profile, such as suggestions based on your browsing history and saved passwords, while you are browsing. In guest mode, you can browse without seeing information from any existing profiles.

 

Managing users in Jade

Managing users for personal Jade use

You can set up personalised versions of Jade for users sharing one device or computer. Note that anyone with access to your device can view all of the information in all profiles. To truly protect your data from being seen by others, use the built-in user accounts in your operating system.

Managing users on Jade for Enterprise

Some Jade browsers are managed by a school or company. In that case, the administrator has the ability to apply policies to the browser. Jade contacts Google to check for these policies when a user first starts browsing (except in guest mode). Jade checks periodically for updates to policies.

An administrator can set up a policy for status and activity reporting for Jade, including location information for Chrome OS devices. Your administrators may also have the ability to access, monitor, use or disclose data accessed from your managed device.

 

Safe Browsing practices

Jade and certain third-party browsers, such as some versions of Mozilla Firefox and Apple’s Safari, include Google's Safe Browsing feature. With Safe Browsing, information about suspicious websites is sent and received between the browser that you are using and Google's servers.

How Safe Browsing works

Your browser contacts Google's servers periodically to download the most recent "Safe Browsing" list, which contains known phishing and malware sites. The most recent copy of the list is stored locally on your system. Google doesn't collect any account information or other personally identifying information as part of this contact. However, it does receive standard log information, including an IP address and cookies.

Each site that you visit is checked against the Safe Browsing list on your system. If there's a match, your browser sends Google a hashed, partial copy of the site’s URL so that Google can send more information to your browser. Google cannot determine the real URL from this information.

The following Safe Browsing features are specific to Jade:

• If you have turned on Safe Browsing’s enhanced protection mode, Jade provides additional protections, and sends Google additional data, as described in Jade settings. Some of these protections may also be available as standalone features, subject to separate controls, where standard protection is enabled.
• If you have turned on 'Make searches and browsing better/Sends URLs of pages that you visit to Google' and Safe Browsing is enabled, Jade sends Google the full URL of each site that you visit to determine whether that site is safe. If you also sync your browsing history without a sync passphrase, these URLs will be temporarily associated with your Google Account to provide more personalised protection. This feature is disabled in Incognito and guest modes.
• Some versions of Jade feature Safe Browsing technology that can identify potentially harmful sites and potentially dangerous file types not already known by Google. The full URL of the site or potentially dangerous file might also be sent to Google to help determine whether the site or file is harmful.
• Jade uses Safe Browsing technology to scan your computer periodically, in order to detect unwanted software that prevents you from changing your settings or otherwise interferes with the security and stability of your browser. If this kind of software is detected, Jade might offer you the option to download the Jade Cleanup Tool to remove it.
• You can choose to send additional data to help improve Safe Browsing when you access a site that appears to contain malware or when Jade detects unwanted software on your computer.
• If you use Jade’s password manager, Safe Browsing checks with Google when you enter any saved password on an uncommon page to protect you from phishing attacks. Jade does not send your passwords to Google as part of this protection. In addition, Safe Browsing protects your Google Account password. If you enter it on a likely phishing site, Jade will prompt you to change your Google Account password. If you sync your browsing history, or if you are signed in to your Google Account and choose to notify Google, Jade will also flag your Google Account as likely to have been phished.
• If you are signed in to your Google Account, Jade will also warn you when you use a username and password that may have been exposed in a data breach. To check, when you sign in to a site, Jade sends Google a partial hash of your username and other encrypted information about your password, and Google returns a list of possible matches from known breaches. Jade uses this list to determine whether your username and password were exposed. Google does not learn your username or password, or whether they were exposed, as part of this process. This feature can be disabled in Jade settings.
• On desktop and Android versions of Jade, you can always choose to disable the Safe Browsing feature within Jade settings. On iOS versions of Jade, Apple controls the Safe Browsing technology used by your device and may send data to Safe Browsing providers other than Google.

 

Privacy practices of apps, extensions, themes, services and other add-ons

You can use apps, extensions, themes, services and other add-ons with Jade, including some that may be pre-installed or integrated with Jade. Add-ons developed and provided by Google may communicate with Google servers and are subject to the Google Privacy Policy unless otherwise indicated. Add-ons developed and provided by others are the responsibility of the add-on creators and may have different privacy policies.

Managing add-ons

Before installing an add-on, you should review the requested permissions. Add-ons can have permission to do various things, such as:

• Store, access and share data stored locally or in your Google Drive account.
• View and access content on websites that you visit.
• Use notifications that are sent through Google servers.

Jade can interact with add-ons in a few different ways:

• Checking for updates.
• Downloading and installing updates.
• Sending usage indicators to Google about the add-ons.

Some add-ons might require access to a unique identifier for digital rights management or for delivery of push messaging. You can disable the use of identifiers by removing the add-on from Jade.

From time to time, Google might discover an add-on that poses a security threat, violates the developer terms for Chrome Web Store or violates other legal agreements, laws, regulations or policies. Jade periodically downloads a list of these dangerous add-ons, in order to remotely disable or remove them from your system.

 

Server log privacy information

Like most websites, our servers automatically record the page requests made when you visit our sites. These "server logs" typically include your web request, Internet Protocol address, browser type, browser language, the date and time of your request, and one or more cookies that may uniquely identify your browser.

Here is an example of a typical log entry where the search for "cars" looks like this, followed by a breakdown of its parts:

123.45.67.89 - 25/Mar/2003 10:15:32 - https://www.google.com/search?q=cars - Firefox 1.0.7; Windows NT 5.1 - 740674ce2123e969

• 123.45.67.89 is the Internet Protocol address assigned to the user by the user’s ISP. D; depending on the user’s service, a different address may be assigned to the user by their service provider each time that they connect to the Internet.
• 25/Mar/2003 10:15:32 is the date and time of the query.
• https://www.google.com/search?q=cars is the requested URL, including the search query.
• Firefox 1.0.7; Windows NT 5.1 is the browser and operating system being used.
• 740674ce2123a969 is the unique cookie ID that was assigned to this particular computer the first time that it visited a Google site. (Cookies can be deleted by users. If the user has deleted the cookie from the computer since the last time they visited Google, then it will be the unique cookie ID assigned to their device the next time that the user visits Google from that particular computer).

 

More information

Information that Google receives when you use Jade is used and protected under the Google Privacy Policy. Information that other website operators and add-on developers receive, including cookies, is subject to the privacy policies of those websites.

Information that Jade Browser Ltd receives when you use Jade is used and protected under the Jade Privacy Policy.

Data protection laws vary among countries, with some providing more protection than others. Regardless of where your information is processed, we apply the same protections described in the Jade Privacy Policy. We also comply with certain legal frameworks relating to the transfer of data, including the European frameworks described on our Data Transfer Frameworks page.

 

Key terms

Cookies

A cookie is a small file containing a string of characters that is sent to your computer when you visit a website. When you visit the site again, the cookie allows that site to recognise your browser. Cookies may store user preferences and other information. You can configure your browser to refuse all cookies or to indicate when a cookie is being sent. However, some website features or services may not function properly without cookies.

Google account

You may access some of Google's services by signing up for a Google account and providing Google with some personal information (typically your name, email address and a password). This account information is used to authenticate you when you access Google services and protect your account from unauthorised access by others. You can edit or delete your account at any time through your Google account settings.