%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
With the widespread adoption of AI tools, browser extensions have become essential for many to boost productivity, but the privacy risks behind them are quietly escalating. A recent research report from Incogni, a data deletion service, reveals that over 50% of Chrome AI extensions in a sampled survey collect user data, with nearly one-third even accessing personally identifiable information (PII).
The study analyzed 442 extensions labeled "AI" and found their total downloads reached 115.5 million. The report indicates that programming assistants, math assistance tools, meeting assistants, and voice-to-text extensions pose the highest risk. These extensions often use "script writing" permissions to access users' input in real-time or alter web page displays, affecting about 92 million users.
In the specific "risk list," some well-known tools also made the cut. The study mentions that Grammarly and the AI content detection tool Quillbot are considered potentially privacy-destructive, which is related to their high user penetration rate. In addition, the survey listed the top ten extensions with high risk probability and potential damage, including Google Translate and ChatGPT Search.
AIbase reminds users that identifying risks lies in observing whether the permissions requested by the extension match its core functionality. For example, if a writing assistant requests precise location data, it is highly suspicious. The security rules are actually simple: once personal data leaves the local device without being anonymized, the extension should be considered an "unacceptable risk." While enjoying convenience, users need to carefully assess the permissions they grant to avoid unintentionally leaking personal privacy.
Key points:
🕵️ Data Collection is Common: Over 50% of AI browser extensions collect user data, and 42% of them use script permissions to monitor users' input and browsing behavior.
⚠️ High-Risk Categories Identified: Programming assistants, meeting transcription, and writing assistance tools have the highest privacy risks; well-known tools like Grammarly and Quillbot are also under scrutiny due to the breadth of their data processing.
🛡️ Permission Review Advice: Users should be wary of extensions that request excessive permissions. The basic principle is: if personal data unnecessarily leaves the host device, it crosses a security red line.