Headline: Chrome quietly dropped a privacy line as it silently installs a 4GB on-device AI model — what crypto users need to know
Google Chrome recently removed an explicit privacy reassurance from its settings just as the browser has been quietly pushing a large local AI model to users’ devices — a combination that has privacy-minded and crypto communities on edge.
What changed
- In Chrome 147 the On‑device AI settings page included this line: “To power features like scam detection, Chrome can use AI models that run directly on your device without sending your data to Google servers.”
- In the rolling Chrome 148.0.7778.97 update that sentence is gone. The new copy merely says Chrome “can use AI models that run directly on your device. When this is off, these features might not work.”
Why people noticed
Reddit and Hacker News users flagged the wording change — and a wider concern: Chrome has been downloading a roughly 4GB file named weights.bin (the Gemini Nano model weights) to any device that meets Chrome’s minimum hardware requirements. The file lands in a folder called OptGuideOnDeviceModel inside Chrome’s user data directory. There’s no opt‑in prompt or visible notification; if you delete the file, Chrome re-downloads it on the next restart.
Verification and technical details
Privacy researcher Alexander Hanff documented the behavior using macOS kernel filesystem logs; the silent download has since been replicated on Windows 11 and Ubuntu. Hanff’s forensic work is what first brought the issue to wider attention.
How Google responds
Google told Decrypt that removing the sentence “doesn't reflect a change to how we handle on‑device AI for Chrome” and that “the data that is passed to the model is processed solely on device.” However, Google also acknowledged that when websites use the local Nano model, those sites may be able to see the model inputs and outputs — and in such cases site‑level privacy policies would apply. Google says it removed the explicit phrasing about Google servers to avoid potential confusion.
The hole in the “on‑device” justification
Beyond the silent download, the privacy argument was already challenged on technical grounds: Chrome 147’s “AI Mode” pill in the address bar routes queries to Google’s cloud rather than the local Gemini Nano model. That undercuts the idea that AI-enabled features always keep your data off Google servers.
Legal concerns
Hanff has argued the silent download may violate Article 5(3) of the EU ePrivacy Directive, which requires explicit consent before storing data on a user’s device.
What this means for crypto users
Crypto users and other privacy‑sensitive people should take note:
- Browsers are often the gateway to custodial services, wallets, and dApps. Any change that affects what data is processed where — and who can see model inputs/outputs — raises potential exposure risk.
- If you keep seed phrases, private keys, or session tokens in browser profiles, consider isolating those activities in a dedicated browser or profile, using hardware wallets, and minimizing sensitive operations on general‑purpose browsers.
- If you’re concerned about the silent model download, check which Chrome version you’re on (Chrome 148 shows the new language). Deleting weights.bin is possible but Chrome may re-download it on restart.
Rollout status
Chrome 148 is rolling out now. Users still on Chrome 147 will see the old wording until they update.
Editor’s note: This story was updated to include Google’s comments and clarify technical points.
Read more AI-generated news on: undefined/news
