Privacy Promise

Last updated: May 27, 2026

Vidora is built for privacy first. All processing happens inside your browser. Nothing uploads to a server. This page is the legal Privacy Policy of the Vidora Chrome extension and the getvidora.com website, operated by RGC Digital LLC.

1. What Vidora does on your device

Vidora intercepts video stream requests as they load on a webpage and makes them available for download with a single click. Detection, parsing, muxing and download all happen locally. No URL, no video content, no page data leaves your device.

2. What we collect (anonymous telemetry)

We collect anonymous usage telemetry to understand which platforms are most used and which features need improvement. This telemetry contains:

Platform tag (e.g., "tiktok", "vimeo", "loom") when a download is detected
Error category (e.g., "drm-blocked", "slow-download", "preflight-unreachable")
Extension version and interface locale
Anonymous session identifier (rotated regularly, not tied to your identity)

Concrete payload shape sent to /api/usage-batch on getvidora.com:

{
  "v": "1.0.18",
  "lang": "fr",
  "counts": {
    "download_completed": 3,
    "platform_vimeo": 2,
    "engine_b_success": 2,
    "resolution_1080p": 2,
    "duration_2_10min": 1
  },
  "batch_id": "uuid",
  "ts": 1747000000000
}

Under European law (GDPR article 5 + ePrivacy, CNIL guidance on purely statistical anonymous telemetry) and US privacy law (CCPA), this data is not personal data: there is no user identifier, no IP stored server-side, no fingerprint, and each batch is delivered standalone (we cannot link two batches to the same install). It does not require opt-in consent. We still offer one-click opt-out in Vidora > Options > Settings > Anonymous statistics.

2.1 Anonymous error reports

When a download fails for a technical reason (DRM, bad manifest, network error), the extension may send a single error report to /api/extension-error with the same anonymity guarantees. Payload contains: platform name (whitelisted hostname or "unknown"), engine that failed, stage that failed (preflight / manifest-fetch / manifest-parse / segment-fetch / aes-key / drm-blocked / mux / write / schedule / fallback / resolve), error class (a short token like HTTP_403, never the URL or stack trace), HTTP status, retry count, encryption type, codec, extension version, browser UI language. Throttled to one same-signature report per hour per user. Same opt-out toggle.

2.2 User-initiated feedback (only when you click Send)

If you click Report this issue on a failed download or Suggest an improvement in the popup footer / Options page, the extension submits to /api/user-feedback only what you have entered or explicitly approved. This path is legally distinct: it is processed under your explicit consent (GDPR article 6.1.a). The opt-out toggle does not block it, because nothing is collected unless you actively click Send.

2.3 Wistia and Loom URL resolution

When the extension detects a Wistia or Loom embed and you click Download, the extension fetches the public embed JSON / share page HTML. These requests only contain the public video ID, only happen on explicit user action, and never include any browsing history or user identifier.

2.4 On the website (getvidora.com)

The website is fully static. No cookies, no analytics, no fingerprinting. Server access logs (IP, user agent) are kept by Cloudflare for up to 30 days for security purposes only.

3. What we never collect

Across all telemetry endpoints, the following data is never transmitted, stored or processed:

URLs of pages you visit
URLs of videos you download
Titles of videos you download
The content of videos you download (videos are saved straight to your Downloads folder by Chrome, we never see the bytes)
Your browsing history
Any stable user identifier (no cookie, no UUID, no fingerprint)
Your IP address (Cloudflare receives it for routing but our endpoint does not persist or log it)
Any personal identifier (no account, no email collection unless you yourself type one in a feedback form)

3.1 How to opt out

Open the extension Options page, go to the Settings tab, and toggle off Anonymous statistics. This single toggle disables both /api/usage-batch and /api/extension-error. When disabled, zero telemetry requests are sent.

4. Current pricing

Vidora is currently free during the launch period. All features are unlocked, no payment required, no signup needed, no account to create. Paid plans will be announced separately when available. Until then there is no payment flow, no payment processor connected, no subscription to manage.

5. Your rights (GDPR, ePrivacy, CCPA)

The anonymous telemetry is by design impossible to link back to a specific user: there is no identifier, no IP storage, no cross-batch correlation. As a result we cannot find your data, even if you asked. This is the strongest form of "right to be forgotten": the data was never about a "you" in the first place. CNIL and EDPB consider this a valid implementation of GDPR article 25 (privacy by design).

For user-initiated feedback you submitted with a reply-email: we can identify and delete it on email request, as long as you remind us roughly when you sent it (we file feedback chronologically, not by sender).

Email [email protected]. We respond within 7 days.

6. Chrome permissions (transparency)

The Vidora extension requests the following Chrome permissions. Each is required for the single purpose of detecting and downloading videos. None of these permissions are used to track, profile, or transmit data about you.

Permission	Why we need it
`activeTab`	Inspect the current tab when you click the Vidora icon
`downloads`	Save the assembled video file to your Downloads folder
`storage`	Persist your settings and local download history
`notifications`	Notify you when a download starts or completes (toggleable)
`webRequest`	Observe (never modify) network traffic to detect HLS / DASH manifests
`webNavigation`	Reset per-tab detection state on page navigation
`declarativeNetRequest`	Set Referer header on segment requests for protected CDNs (Bunny.net, Vimeo, Wistia)
`offscreen`	Run segment stitching and MP4 muxing in an offscreen document (Manifest V3 requirement)
`scripting`	Inject detection logic when you trigger a scan
`tabs`	Read the active tab title for download filename generation
`host_permissions: <all_urls>`	The extension's purpose is to detect videos on any webpage. Restricting to a domain allowlist would defeat the use case

7. No third-party data sharing

Vidora does not share any data with third parties. The anonymous telemetry endpoints run on our own infrastructure (Cloudflare Workers / Pages). Specifically:

Cloudflare Pages: hosts getvidora.com and the telemetry endpoints. Standard edge logs (IP, user agent) are kept by Cloudflare for at most 30 days for security purposes and are not joined to telemetry payloads
Resend: transactional email provider that delivers the aggregated digests from the telemetry endpoints to the operator inbox. Resend processes the body of the email (which contains only the anonymous fields described in section 2)
Google Fonts: Inter font on the website (fonts.googleapis.com)

We do not load any other third-party scripts.

8. Data retention

Anonymous telemetry: each batch is forwarded to the operator inbox by Resend within seconds, then dropped on our side. We keep the emails for as long as they are useful for improving the product (typically rolling 90 days in the inbox)
User-initiated feedback: kept in the operator inbox until we have acted on it, then archived for up to 2 years to detect patterns across users

9. Children

Vidora is not intended for children under 13. We do not knowingly collect data from minors.

10. Changes to this policy

We will update the "Last updated" date at the top whenever we change this policy. Material changes will be communicated via the extension's update notes.

11. Contact

For privacy questions or data deletion requests: [email protected]. Postal: RGC Digital LLC, 8206 Louisiana Boulevard NE, Albuquerque, NM 87113, USA.