Summary

  • Chrome is updating its Web Store privacy policies for Chrome extensions.
  • The main changes are designed to enhance privacy protections for users — extensions can only collect data that's strictly necessary, and must disclose any changes.
  • These policies go into effect on August 1, 2026.

On July 1, Google announced some significant changes to the Chrome Web Store's policies. These changes will impact Chrome extensions in several key ways, but the primary focus is on enhancing user privacy.

A person studying using a laptop with the Google Chrome Web Store open.
How I Check the Safety of Chrome Extensions Before I Install

Taking a moment to make a few small security checks before installing can protect against a bunch of issues down the line.

2

Major policy updates for the Chrome Web Store

It's nice to see such a focus on privacy from Google

Several of the updated policies hit on privacy. Here's what's new:

  • Chrome extensions will only be allowed to collect user data that is "strictly necessary to the extension's disclosed single purpose." In other words, extensions can only collect data that they need to function — they can't gather info just because they want to.
  • The Chrome Web Store's disclosure policy is also getting stricter. All data collection by an extension will need to be "prominently disclosed to the user."
  • Developers will need to proactively disclose to users if their data handling changes at all after installation. In other words, a developer can't upload an extension that collects certain data and then update it to gather additional data, or alter what it does with that data, without informing users.

Two non-privacy changes could also have far-reaching implications:

  • Predictive markets are being added to Google's list of prohibited products. Any extensions that "facilitate or enable real money transactions on predictive outcomes are not allowed."
  • Google is also expanding the malicious and prohibited products policy to "explicitly disallow extensions designed to circumvent safety guardrails, usage restrictions, or other protective measures implemented by AI-powered services." In simple terms, extensions that attempt to bypass AI usage limits aren't allowed.

Why these changes matter

Extensions are great, but sometimes they overstep their bounds

The Chrome Web Store is generally safe, but data collection by developers has definitely become a hot-button issue over the last few years, so it's nice to see Chrome cracking down. After all, a lot of personal stuff happens in our browsers — everything from email to banking to healthcare appointments.

The requirement to notify users of data collection changes is also welcome — there have been some high-profile cases of extensions updating to collect tons of data after installation, and this should help mitigate that sort of thing.

Personally, I am all for changes that help protect user privacy — especially these days, where it can seem like companies value it less and less. Of course, you could make the case that if you care about privacy, you shouldn't be using Chrome at all, but sometimes you have to use a particular browser even when better alternatives exist.

When these changes take effect

Google is giving devs time to adjust

Google says enforcement of these updated policies begins August 1, 2026. Developers have until that date to make sure their extensions are compliant. For users, there's no action you need to take, but now might be a good time to review your Chrome extensions and make sure you're actually using what you have installed (and pick up some useful new extensions along the way).