Privacy Policy

1. Introduction

Human Interface Design LLC ("Company," "we," "us," or "our"), doing business as os1, operates the os1 mobile application and the website os1.computer (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

Our principal place of business is 418 Broadway, Ste N, Albany, New York 12207. You can contact us at legal@hi.os1.computer.

2. Information We Collect

Personal Information

We may collect personally identifiable information that you voluntarily provide, including but not limited to:

• Name and email address
• Phone number
• Account credentials
• Payment and billing information (processed by third-party payment processors)
• User-generated content, including text, images, and files submitted through the Service
• Authentication tokens (access and refresh tokens) used to keep you signed in
• Apple Push Notification (APNs) device tokens, if you opt in to notifications
• Feature preferences you set in the app, such as whether health-data features are enabled
• Signals used to verify that requests come from a legitimate device and to detect abuse, fraud, and automated traffic

Subscription & Billing Data

Paid subscriptions are sold through Apple In-App Purchase. Apple processes the payment; we do not see or store your payment card details. We do receive and store data Apple provides about your purchase, including product and transaction identifiers, signed receipt payloads, environment, subscription status, renewal status, and period start/end dates. We also maintain a credit ledger associated with your account that records credit grants, reservations, settlements, refunds, and adjustments.

Generated Content

When you use the Service to generate images or video, we store the generated media (or links to it in our storage), the prompt and parameters used to generate it, the underlying model identifier, and related metadata, so that the media can be displayed in your conversation across devices and recovered if your client disconnects mid-generation.

Conversations and Inputs

The contents of your chat messages, your uploaded images, files, and other inputs are processed by our servers and by the underlying providers we use in order to produce a response. We may also store, log, cache, retain, or back up some or all of this content on our servers — for example, to support session recovery and cross-device continuity, to make features work when your device is offline or backgrounded, to detect and investigate abuse, to debug and improve the Service, for safety and policy enforcement, for analytics and research, and for any other lawful purpose. The scope and duration of any such storage is determined by us in our sole discretion and may change at any time without prior notice.

Automatically Collected Information

When you access the Service, we may automatically collect:

• Device information (device type, operating system, unique device identifiers)
• Usage data (features used, interaction patterns, timestamps)
• Log data (IP address, browser type, pages visited, crash reports)
• Analytics data collected through standard analytics tools

Waitlist & Marketing

Separately, if you sign up for our website waitlist, you voluntarily provide your email address, which we use to send you product updates about os1. Waitlist emails are processed by an email-delivery provider on our behalf and are not linked to an in-app account.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service
• Process transactions and send related information
• Send administrative information, updates, and security alerts
• Respond to your comments, questions, and support requests
• Monitor and analyze usage trends to improve user experience
• Detect, prevent, and address technical issues and fraud
• Comply with legal obligations

4. Data Storage and Conversations

The os1 mobile application stores your conversation history locally on your device. If you enable iCloud sync, your conversation data may also be stored in your personal iCloud account via Apple's CloudKit infrastructure. iCloud storage is governed by Apple's own privacy policy and terms.

We may also, at our sole discretion, store, log, cache, retain, or back up conversation data, inputs, outputs, and related content on our own servers and on servers operated by our infrastructure providers — including for session recovery, cross-device continuity, abuse detection, debugging, product improvement, analytics, research, safety enforcement, and other lawful purposes. The categories, scope, and duration of server-side storage may change at any time without prior notice. As described in Section 2, we already store certain server-side data necessary to operate the Service, including account and authentication state, push and preference settings, subscription and credit ledger data, and the images or videos you generate through the Service (along with the prompts and metadata used to generate them).

5. Infrastructure and Data Transit

os1 is a single, unified AI agent. To deliver the Service we rely on infrastructure and service providers — including providers of cloud hosting, storage and content delivery, language-model inference, image and video generation, web and other search, analytics, error reporting, push notifications, email delivery, fraud and abuse prevention, and platform services provided by Apple. The specific providers we use are selected, configured, and may be changed by us at any time, in our sole discretion, and we do not publicly disclose or guarantee the identity of any particular underlying provider.

When you use the Service, your inputs (such as prompts, messages, images, and files) are transmitted to and processed by the relevant providers as needed to fulfil your request, and may be stored on infrastructure operated by them in addition to our own. Where commercially reasonable, we ask model providers not to train on your data; we cannot guarantee the data-handling practices of any third party. Each provider's own privacy policy and terms govern their handling of data once it reaches their systems.

The Service is not a marketplace or selector for underlying providers. We do not represent that any specific provider is or will continue to be used, and we may add, remove, or replace any provider at any time without notice.

6. Data Retention

We retain account, subscription, billing, credit-ledger, generated-media, and any other data we collect for as long as your account is active or as needed to provide the Service, comply with our legal and Apple-imposed obligations, resolve disputes, prevent abuse, and enforce our agreements. We may also retain de-identified or aggregated data indefinitely. We may delete some or all server-side data at any time, including when an account is suspended, banned, or deleted, subject to retention required by law.

7. Data Sharing and Disclosure

We may share, disclose, or transfer information in the following circumstances:

• Service Providers: With vendors who perform services on our behalf, including hosting and storage, model inference, content generation, search, payment, analytics, error reporting, push notifications, email delivery, and fraud and abuse prevention
• Affiliates and Business Partners: With our current and future affiliates, parents, subsidiaries, and partners, for purposes consistent with this Privacy Policy
• Legal Requirements: If required by law, regulation, legal process, or governmental request, or to enforce our terms and policies
• Business Transfers: In connection with any merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of our assets or equity
• Protection of Rights: To protect the rights, property, or safety of Human Interface Design LLC, our users, or others
• With Your Direction or Consent: When you direct us to share information or otherwise consent to sharing
• Aggregated or De-identified Data: We may create, use, share, and commercialize aggregated, anonymized, or de-identified data for any purpose, including research, model evaluation, benchmarking, and product development

We reserve the right to share or sell personal information for any purpose permitted by applicable law, and we may add or change the categories of recipients and purposes at any time. To the extent applicable law (such as the California Consumer Privacy Act) provides you with a right to opt out of certain sharing or sales of personal information, you may exercise that right as described in Section 9.

8. Data Security

We implement commercially reasonable technical and organizational measures to protect your personal information. However, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data.

9. Your Rights and Choices

Depending on your jurisdiction, you may have the right to:

• Access, correct, or delete your personal information
• Object to or restrict certain processing of your data
• Request portability of your data
• Withdraw consent where processing is based on consent

To exercise any of these rights, please contact us at legal@hi.os1.computer.

10. Children's Privacy

The Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information.

11. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time. Changes are effective immediately upon posting the revised policy. Your continued use of the Service after any changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this page periodically.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us:

• Human Interface Design LLC
• 418 Broadway, Ste N, Albany, New York 12207
• legal@hi.os1.computer