TabTVHome

Privacy Policy

Last updated: June 2026

Local-first by design

TabTV runs in your browser. Your playlists, channels, favorites, watch history, and settings are stored locally on your device (in the browser’s IndexedDB and local storage). By default this data never leaves your device, and we never receive it.

We do not collect your links or credentials

We do not collect, log, or sell your playlist URLs, stream URLs, or Xtream credentials. Our analytics (described below) has autocapture and session recording disabled specifically so that this kind of data can never be captured.

Streaming & proxying

Playback happens directly between your browser and your provider whenever possible. In some cases (for example, when a provider serves plain HTTP to a secure page, or omits CORS headers) playback or playlist loading is relayed through a lightweight proxy purely to make it work. We do not store the content that passes through, and we do not retain your stream URLs in logs.

Optional cloud sync (encrypted at rest)

Cloud sync is optional and off until you create an account and sign in. When enabled, we sync only a small, portable slice of your data — your playlist source URLs plus your continue-watching and recently-played history. Your channel lists are never uploaded; each device re-fetches them from the playlist URL.

Everything we store is encrypted in your browser before it is sent, and we only ever store ciphertext. The per-user encryption key is derived from a secret kept in our hosting provider’s secret store — never in the database — so a database leak on its own yields nothing but unreadable data. This is encryption at rest, not zero-knowledge: because we hold that secret, we could in principle derive the key, so please do not treat it as a guarantee that we can never technically access your synced data.

If you never sign in, nothing is uploaded. You can permanently delete everything stored for your account at any time from the account menu, or by emailing hello@tabtv.app.

Analytics

To understand interest during beta we use privacy-friendly analytics. Umami measures aggregate web traffic (page views and referrers); it sets no cookies, collects no personal data, and cannot be used to identify you. We also use PostHog for anonymous product events (for example, “opened the app” or “clicked Go Pro”). For PostHog we:

  • Disable autocapture, so input values and URLs are never scraped;
  • Disable session recording entirely;
  • Use an EU data region by default;
  • Run cookieless until you consent, and create an identified profile only when you voluntarily provide an email (e.g. the waitlist).

You can opt out from the in-app notice at any time.

Waitlist email

If you join the waitlist, we store the email you submit so we can notify you at launch and apply your beta discount. We use it only for that purpose. Ask us to delete it at any time via hello@tabtv.app.

Your rights

You can clear all local data at any time from the app’s settings. If you are in the EU/EEA (GDPR) or similar jurisdictions, you may request access to, or deletion of, any personal data we hold (such as a waitlist email) by contacting hello@tabtv.app.