Privacy Policy
Introduction
This Privacy Policy describes how I, as the individual developer, handle information when you use the SSL Certificate Info Chrome extension (the “Extension”). The Extension is a private, non-commercial project operated by an individual.
The Extension is aimed at developers and administrators who work with SSL/TLS certificates and want quick visibility into certificate metadata for sites they visit.
What the extension does
When you browse HTTPS websites, the Extension can query a remote service to retrieve certificate-related information for the hostname of the active tab. It displays certificate details in the popup, such as validity, names, issuer and technical fields. It may also update the toolbar badge with remaining days until expiry based on your settings. Optional areas of the Extension include links to external SSL tools and a news section that loads public RSS feeds when you open it.
Collected information
The Extension does not create user accounts and does not embed analytics or crash-reporting SDKs.
On your device
- Settings: Certificate urgency thresholds, such as “critical” and “expiring soon” day counts, are stored with Chrome’s
chrome.storageAPI. - News cache: If you open the news section, fetched article metadata may be cached locally for a limited time so the list loads faster on repeat visits.
Sent to the backend I operate
To obtain certificate information, the Extension sends HTTPS GET requests to a certificate lookup API exposed through Amazon API Gateway and handled by AWS Lambda. Based on the current implementation, those requests include:
- domain: the hostname for the active tab, for example
example.com, not the full path or page HTML. - port: only when relevant, for example for non-default HTTPS ports.
Like any HTTPS request, infrastructure in front of and behind the API may process technical data such as your IP address, request timestamp, requested API URL, query string and user agent. I do not receive personal profile fields such as your name or email through these certificate lookups.
Information not collected
The Extension does not, by design:
- read or transmit full web page content, passwords or form fields;
- run embedded advertising or analytics trackers inside the Extension;
- collect Chrome browsing history as a separate uploaded dataset beyond hostname-based lookups needed for certificate checks.
How data is used
- Backend responses are used only to show certificate information and drive badge colours or countdowns.
- Locally stored settings control how urgency colours map to remaining days.
- RSS feeds are used only to display article titles and links when you open the news section.
Third-party services
The certificate lookup API uses Amazon API Gateway and AWS Lambda. Amazon Web Services provides the cloud infrastructure and may process technical request data as part of operating the service.
At the time of writing, API Gateway access logging and default route metrics are disabled. AWS Lambda uses Amazon CloudWatch Metrics and Amazon CloudWatch Logs with the configured AWS account settings. Lambda logs may contain technical details about invocations, depending on what the function logs.
I do not use AWS features for advertising or user profiling. The Extension does not maintain a separate application-side database of end-user lookups beyond what AWS services may log.
If you open the news section, RSS feeds are requested from third-party providers. Those providers may process technical request data according to their own policies.
Data retention
On your device: Stored settings and caches remain until you remove them, clear extension data or uninstall the Extension.
AWS / server-side: Log retention for CloudWatch Logs follows my AWS account settings. API Gateway access logging is disabled for this API, which limits one common source of HTTP access records. Lambda may still emit logs to CloudWatch. For questions about logging configuration, contact help@wided.de.
Security
Certificate lookups use HTTPS. No security measure is perfect; you should continue to follow your organisation’s policies when handling sensitive systems.
Beta version notice
This Extension is provided as a beta. Features, defaults, backend endpoints and this policy may change. Significant changes will be reflected in an updated policy with a new “Last updated” date when practicable.
User choices
- You can avoid triggering lookups by not opening the popup or by disabling or uninstalling the Extension.
- You can clear extension storage from Chrome’s extension settings.
- You do not need to open the news section or external links.
Contact
This Extension and its backend are operated privately by an individual developer.
Email: help@wided.de
Changes to this policy
I may update this Privacy Policy to reflect product or legal changes. The current version is identified by the “Last updated” date below.
Last updated
2026-05-11