OwnOS
Request Access

Privacy Policy

Your data belongs to you. This is a core principle at OwnOS.

This policy explains what data we collect, what we do with it, and what we don't do.

The short version

  • We collect only what's needed to run the service
  • We do not sell your data
  • We do not use your content to train AI models
  • We do not show ads or track you across other sites
  • You can export or delete your data anytime

What we collect

From you, when you sign up

  • Email address, password (stored as a secure hash), timezone
  • Optionally: your name and a profile picture

From you, as you use OwnOS

  • The content you create — planner entries, tasks, lists, notes, contacts, bookmarks, spaces, and game play data (current game state and history of completed games, such as scores and win/loss records)

Automatically

  • Last login time, device, and browser
  • Aggregate feature usage (e.g., "notes feature used today"). This is counted at the account level so we know whether a feature is being used, but the contents of what you do inside that feature are not part of the analytics.
  • Error reports when something breaks
  • IP address and approximate location derived from it (city/region level), used for security and account activity history. We do not request or collect device GPS or precise location.
  • Cookies and browser local storage needed for login, security, and core functionality. No advertising or tracking cookies.

You can view your own sign-in history anytime under Account → Account activity, which shows recent logins, the device and browser used, and the sign-in method.

What we do not do with your content

We do not analyze your content for advertising, profiling, or AI training. We may access content when responding to a support request or when diagnosing a technical issue, and only to the extent needed to resolve it.

How we use what we collect

  • To run the service: Store and sync your data, send account notifications, respond to support requests, and let you send content to other users you choose.
  • To improve OwnOS: Understand which features are used, fix bugs, plan what to build next.
  • To keep things secure: Detect abuse, prevent unauthorized access, keep the system running.

Sending

You can send specific items or spaces to other OwnOS users. When you do, the recipient gets an independent copy. Sending is direct — recipients see only what you've sent them. They cannot see other items you've sent to other users, or who else you've sent things to.

Each recipient can change their copy freely. Their edits stay with them, and your original stays yours.

Sending is permanent. Once an item is sent, the recipient's copy belongs to them. You can stop further changes from going out, but you cannot recall a copy that has already been delivered. Revoking access, deleting the original, or deleting your account does not remove copies already in recipients' accounts. Think of it like sending a letter — once it's delivered, it's theirs.

Your rights

You can:

  • Export all your data anytime as JSON (machine-readable) or PDF (for reading)
  • Edit your content and profile anytime
  • Delete any item, or your entire account, from Settings
  • Email us at help@ownos.app for anything else

If you live in the EU, UK, California, or another jurisdiction with privacy rights, those rights apply too — including access, correction, deletion, portability, and the right to complain to your local data protection authority. Email help@ownos.app to make a request. We respond within 30 days.

Security

In transit. All connections use HTTPS/TLS — between your browser and OwnOS, between our servers and Supabase, and to any third-party API we call on your behalf.

At rest. Encryption is applied in two layers:

  • Infrastructure layer. Supabase encrypts all database storage and backups at rest with AES-256. This is the standard baseline.
  • Application layer. On top of that, we encrypt sensitive fields directly inside the database — including OAuth tokens, contacts, notes, tasks, lists, planner data, and bookmarks. Each user has their own encryption key, derived from a master key held in Supabase Vault using industry-standard methods.

Passwords. Your password is hashed before storage. We never see or store your plaintext password.

Sessions. Sessions time out after 8 hours of inactivity, or 7 days if you've chosen "Keep me signed in."

Optional offline mode. If you turn on Offline Access in Settings, OwnOS encrypts everything cached locally in your browser using AES-256-GCM with a passphrase only you know. The passphrase is never sent to us or stored anywhere. Your offline cache is unreadable on your own device without it.

What we don't have

  • No end-to-end encryption. Server-side data is encrypted with keys we manage, not with keys only you hold. We can technically decrypt server-stored data when needed to operate the service. The optional offline mode is the exception — that one is encrypted with a passphrase only you have.
  • No client-side encryption of synced server data. Encryption beyond the infrastructure layer happens on our servers, not on your device before sync.
  • What's outside our control. Some risks live outside the OwnOS system itself — for example, if someone gets hold of your password or breaks into your email account, we cannot stop that. Our infrastructure providers (Supabase, Netlify, Google) maintain their own security, and a breach on their end is something we'd respond to but cannot prevent. If anything happens on our side that affects your data, we'll let you know.

Data retention

While your account exists, we keep your data so the service works. Deleted items go to Trash and are removed from backups within 7 days.

When you delete your account: your data is deleted immediately from active systems. Soft-deleted records are purged within 7 days. Encrypted backups are retained for up to 7 days. Minimal records (that an account existed) may be retained for legal compliance.

If you disconnect Google, your stored tokens are deleted from our database immediately, and we ask Google to revoke them.

Free accounts inactive for 12+ months may be deleted. We'll email you at least 30 days before that happens.

Law enforcement and government requests

We will notify you before disclosing your data in response to legal process unless we are legally prohibited from doing so. We do not voluntarily provide user data to any government or law enforcement agency.

Subprocessors

We use a small set of trusted providers:

  • Supabase — Database, authentication, storage. Also handles authentication-related transactional emails. Privacy policy
  • Netlify — Web hosting and CDN. Privacy policy
  • Google — Sign in with Google (OAuth 2.0) and Google Workspace for transactional email. Privacy policy
  • Sentry — Error monitoring. When something breaks in the app, Sentry receives a report with the error message, the line of code that failed, and basic technical context so we can fix the bug. Used only to diagnose and fix issues. Privacy policy

We do not use advertising networks, data brokers, or third-party trackers. We do not use your content to train AI models, and we do not sell or share your content with AI providers for training.

Google Calendar import (Optional)

If you connect Google Calendar, OwnOS can read your list of calendars and the events on the ones you choose to import. Read access only — OwnOS cannot create, change, or delete anything in your Google Calendar.

We store encrypted access and refresh tokens to maintain the connection. We never see or store your Google password. You can disconnect anytime from Settings, or revoke OwnOS independently from your Google account permissions.

Where your data is stored

Your data is stored on servers in the United States. If you're outside the US, your data crosses borders to reach us.

Children

OwnOS is not for users under 18. If you believe a child has created an account, email help@ownos.app and we will promptly investigate and delete the account if confirmed.

Changes to this policy

If we change anything significant, we'll email you and update the date below. Continued use after that means you accept the changes. For changes that materially reduce your rights, we will ask for your explicit consent before applying them.

Contact