隐私政策 - 百晓助手浏览器扩展

百晓助手扩展隐私政策

最后更新：2026-05-21

1. 扩展处理哪些数据

当您点击"抓取到百晓"按钮时，扩展会从当前标签页读取：

文章书目元数据（标题、作者、年份、期刊、卷期页、DOI、摘要）
文章来源 URL
文章 PDF 字节流（通过您已有的浏览器会话从出版商处获取）

扩展不处理您在未主动点击抓取时的任何浏览数据，也不传输出版商 Cookie。

2. 数据去向

抓取的元数据与 PDF 上传至百晓 API 服务器 https://chat.know-pa.cn（或您在扩展设置中配置的自定义服务器），存储在您的百晓知识库中。上传请求通过 Bearer Token 与您的账号关联。

Token 存储于浏览器本地扩展存储（chrome.storage.local），仅传输给百晓服务器，不向任何第三方披露。

3. 第三方服务

对于有 DOI 的文章，百晓后端可能调用以下公开 API 补全书目字段：

Crossref（api.crossref.org）
OpenAlex（api.openalex.org）
Unpaywall（api.unpaywall.org）

上述调用仅传递文章 DOI，不包含任何个人身份信息。

4. 机构访问 Cookie

为支持通过机构订阅访问的付费文章，扩展的后台 Service Worker 在获取 PDF 时会使用您浏览器中已有的出版商域名 Cookie。

Cookie 仅在您主动抓取时的瞬间被读取，不会被记录或发送至出版商域名以外的任何地方
对于知网，扩展通过 declarativeNetRequest 对特定 PDF 请求注入 Referer 头，请求完成后立即移除
对于万方，扩展拦截万方自身的下载流程（chrome.downloads.onCreated）以获取 PDF 字节流

5. 所用权限

权限用途

activeTab 读取您正在查看的文章页面，识别元数据和 PDF 地址

scripting 向文章页面注入元数据检测脚本

storage 在设备本地保存 Bearer Token 和上次使用的知识库 ID

notifications 在 PDF OCR 异步处理完成后通知您

downloads 拦截万方下载流程以捕获 PDF 字节流

declarativeNetRequestWithHostAccess 为知网 PDF 请求注入 Referer 头，范围限于单次在途请求

host_permissions: https://*/* 使用您的会话 Cookie 跨域获取出版商 PDF，以支持任意机构订阅出版商

6. 您的控制权

删除文章：在百晓知识库中删除，服务器端的 PDF 和元数据同步删除
撤销访问：在账号设置中重新生成 Token，或直接卸载扩展
导出数据：通过百晓账号的标准导出功能获取

7. 儿童与敏感数据

本扩展不面向 13 岁以下用户，不处理任何特殊类别的个人数据。

8. 政策变更

如有实质性更新，我们将修改页面顶部的"最后更新"日期，并在扩展更新说明中公告。

9. 联系方式

隐私相关问题或数据删除请求，请发送邮件至 tj-agent@tongjian-ai.cn

Baixiao Helper Privacy Policy

Last updated: 2026-05-21

1. What data the extension processes

When you click "抓取到百晓" (or "Capture to Baixiao") on an article page, the extension reads the following from the active tab:

The article's bibliographic metadata (title, authors, publish year, journal name, volume / issue / pages, DOI, abstract) — extracted from page meta tags and DOM elements.
The article's source URL.
The article's PDF bytes, fetched from the publisher using your existing browser session (including any institutional-access cookies).

The extension does not process or transmit:

Your browsing history outside of articles you explicitly capture.
Cookies from publisher sites — those remain in your browser and are only used to authenticate the PDF fetch.
Any data while the extension is idle (i.e., when you are not actively clicking the capture button).

2. Where the data goes

Captured articles (metadata + PDF bytes) are uploaded to the Baixiao API server at https://chat.know-pa.cn (or any alternative server URL you configure on the extension's settings page) and stored in your Baixiao knowledge base. The upload is associated with your Baixiao user account via a bearer token.

Your bearer token is stored in your browser's local extension storage (chrome.storage.local). It is transmitted only to the Baixiao API server, never to any third party.

3. Third-party services

For DOI-keyed articles, the Baixiao backend may call the following public APIs to enrich missing bibliographic fields:

Crossref (api.crossref.org)
OpenAlex (api.openalex.org)
Unpaywall (api.unpaywall.org)

Only the article's DOI is sent to these services. No personally identifiable information is included in those calls.

4. Institutional-access cookies

To support paywalled articles via your institution's subscription, the extension's background service worker uses your browser's existing cookies for the publisher's domain (e.g., wiley.com, sagepub.com) when fetching the PDF. This means:

Articles you can already access in your browser, the extension can capture for you.
Articles you do not have institutional access to remain inaccessible.
Publisher cookies are read only at the moment of fetching the PDF you explicitly capture. They are not exfiltrated, logged, or sent anywhere outside the publisher's own domain.

For the CNKI database specifically, the extension uses a per-request Referer header override (via chrome.declarativeNetRequest) to bypass CNKI's anti-leech check on PDF downloads. The override is applied only to the specific PDF URL for the in-flight request and is removed immediately after.

For the Wanfang database specifically, the extension intercepts Wanfang's own download flow (via chrome.downloads.onCreated) to capture the PDF bytes for upload to your knowledge base.

5. Permissions used

Permission Why it's needed

activeTab Read the article page you're viewing so the extension can detect metadata and the PDF URL.

scripting Inject the metadata-detection script into the article page.

storage Persist your Baixiao bearer token and last-used knowledge-base ID on-device.

notifications Notify you when async PDF processing (OCR) completes after upload.

downloads Intercept Wanfang database downloads to capture PDF bytes for upload (otherwise Wanfang PDFs save to disk and the extension cannot see them).

declarativeNetRequestWithHostAccess Inject the Referer header for CNKI PDF fetches to pass CNKI's anti-leech check. Scoped to one URL per in-flight request.

host_permissions: https://*/* Fetch publisher PDFs cross-origin using your session cookies — required to support any institutional-access publisher.

6. Your data, your control

Delete a captured article: from your Baixiao knowledge base — this removes both the PDF and the metadata server-side.
Revoke the extension's access: regenerate your bearer token at account settings, or simply uninstall the extension.
Export your data: available through your Baixiao account's standard export tools.

7. Children and sensitive categories

The extension is not directed to children under 13. It does not knowingly process special-category personal data.

8. Changes to this policy

We may update this policy as the extension evolves. Material changes will be reflected here with an updated "Last updated" date and announced in the extension's update notes.

9. Contact

For privacy questions or data-deletion requests, contact: tj-agent@tongjian-ai.cn