Google Tweaks Chrome AI Privacy Wording, Insists Processing Stays On-Device

Google’s recent tweak to Chrome’s on‑device AI disclaimer may look minor, but it underscores a broader tension between privacy promises and feature expansion. By stripping the phrase “without sending your data to Google servers,” the company preempted potential legal disputes when web developers invoke the local Gemini Nano model via the new Prompt API. The wording shift does not indicate a backend architecture change; the AI inference still occurs on the user’s hardware, preserving the on‑device processing guarantee that differentiates Chrome from cloud‑only competitors.

The technical rollout of Gemini Nano began in early 2024 as a lightweight, 4 GB model stored locally to power security features like scam detection. With the Prompt API, websites can now call the resident model directly, receiving inputs and outputs in real time. In this scenario, any data exchanged belongs to the invoking site’s privacy policy, not Google’s, because the site’s script mediates the interaction. Chrome also introduced a user‑controlled toggle that disables the model and removes it automatically when system resources dip, addressing concerns about storage bloat and unintended compute usage.

For users and regulators, the episode reinforces the importance of transparent UI language around AI data flows. While Google maintains that no user prompts are sent to its servers, developers must clearly disclose that site‑level interactions may expose user inputs to the site’s own data practices. This balance of on‑device performance and third‑party data responsibility could set a precedent for browsers integrating AI, influencing future privacy standards and shaping competitive dynamics in the browser AI market.