AI Oracle

Privacy Policy

Effective May 9, 2026

This Privacy Policy explains how Blast Off Apps LLC, a West Virginia limited liability company ("Blast Off Apps", "we", "us", or "our"), collects, uses, shares, and protects information in connection with AI Oracle (the "Service"), available at getaioracle.com. Blast Off Apps is the data controller for personal data processed in connection with the Service.

Contact: adam@blastoffapps.com.

1. Information we collect

a. Account information

When you sign in we record your email address (provided through Supabase Auth) and create an organization membership. We do not store passwords; authentication runs through magic-link email.

b. Connected-service tokens

When you connect a third-party service (Google Workspace, Notion, GitHub, Atlassian, Linear, etc.) we receive an OAuth access token and, where the provider supports it, a refresh token. We store these tokens to make authenticated requests on your behalf. We never see, request, or store your password to those services.

c. Content you create in the Service

Decision records, agent configurations, agent memories, notes, and other content you create are stored in our database and associated with your account.

d. Content fetched from connected services

When an agent runs, it may fetch data from a service you connected (for example, the body of a Gmail message you ask it to read, or a Notion page you ask it to summarize). The fetched content passes through our servers in transit and is included in the prompt sent to our AI provider for that run. We retain the agent's run record (including a summary of what it did and the resulting memories) but we do not separately store the raw fetched content unless you explicitly save it as a memory or decision in the Service.

e. Usage and diagnostic data

We collect basic logs (request times, endpoint paths, error messages, IP address, user-agent string) to operate, secure, debug, and monitor the Service. We do not run third-party analytics, advertising trackers, or session-replay tools.

2. How we use your information

  • To provide and operate the Service (authenticate you, run your agents, store your decisions);
  • To debug, monitor, secure, and improve the Service;
  • To communicate service-relevant updates (security notices, account messages, billing changes if introduced);
  • To respond to your support requests;
  • To enforce our Terms of Service, prevent abuse, and protect the rights, property, or safety of Blast Off Apps, our users, and the public;
  • To comply with legal obligations and respond to lawful requests.

Blast Off Apps does not sell your personal information, share it with advertisers, or use it to train third-party AI models.

3. Legal bases for processing (EEA / UK)

If you are in the European Economic Area or the United Kingdom, the legal bases on which we process your personal data are:

  • Contract. Processing necessary to provide the Service you have signed up for.
  • Legitimate interests. Operating, securing, and improving the Service, preventing abuse, and communicating service updates — balanced against your rights and interests.
  • Consent. Where you have explicitly authorized a connected service via OAuth, or where a specific feature requires opt-in consent.
  • Legal obligation. Where we are required by law to process or retain certain data.

4. Google user data — limited-use disclosure

AI Oracle's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

  • We use Google user data only to provide and improve the user-facing features that are prominent in the AI Oracle app.
  • We do not transfer Google user data to third parties except as necessary to provide or improve user-facing features, or to comply with applicable law.
  • We do not use Google user data for serving advertisements, including retargeting or personalized advertising.
  • Humans do not read Google user data unless we have your explicit consent for specific data, it is necessary for security purposes (such as investigating abuse), to comply with applicable law, or the data has been aggregated and anonymized.

5. Subprocessors and third parties

The Service relies on a small number of third-party providers, each acting as a subprocessor to Blast Off Apps:

  • Supabase, Inc. — database, authentication, file storage, and edge-function hosting. Privacy
  • Anthropic, PBC — large-language-model inference for agent runs (Claude). Per Anthropic's commercial terms, your data is not used to train their models. Privacy
  • OpenAI, L.L.C. — embeddings used to index your decision corpus. Per OpenAI's API terms, your data is not used to train their models. Privacy
  • Vercel Inc. — application hosting and content delivery. Privacy
  • Connected services you choose (Google, Notion, GitHub, Atlassian, Linear, and others) — only when you explicitly connect them and only with the scopes you grant during sign-in.

Blast Off Apps may also disclose your information when required by law, valid legal process, or to protect the rights, property, or safety of Blast Off Apps, our users, or the public. In the event of a merger, acquisition, reorganization, or sale of all or substantially all of our assets, your information may be transferred as part of that transaction, subject to the protections of this Policy.

6. Browser extension

AI Oracle publishes a Chrome browser extension that connects to your AI Oracle workspace. The extension is gated by an API token you generate at getaioracle.com/settings and paste into the extension's options page; without that token the extension transmits nothing. Below is exactly what the extension reads, sends, and stores. This section mirrors the permissions declared in the extension's manifest.

a. What the extension stores locally

Your API token, the configured workspace URL, and the timestamp of the most-recent inbox alert you've already seen are stored in chrome.storage.local on your device. They are not synced to your Google account and are not transmitted anywhere except to the AI Oracle workspace you configured. Removing the extension deletes this local storage.

b. What the extension transmits, and when

  • Capture (user-initiated). When you click the toolbar icon and press Create note, the extension sends the active tab's URL, title, the text you have selected (if any), and any comment you typed in the popup to /api/notes/quick on your AI Oracle workspace.
  • Reconcile (user-initiated). When you click Reconcile, the extension sends the active tab's URL and title to /api/check. For Google Docs, Sheets, and Slides, AI Oracle fetches the content server-side via your existing Google Workspace connection. For other sites, the extension reads the page's selectable body text (capped at 60,000 characters) from the active tab and includes it in the request.
  • Opportunistic match nudge. Approximately three seconds after a page finishes loading, the content script sends the page's URL and title (no body content, no selection) to /api/match so the floating button can show whether anything in your decision corpus relates. This runs on every page where the content script loads; you can prevent it on a given site by disabling the extension's site access for that site in Chrome.
  • Inbox polling. Every two minutes the background service worker calls /api/alerts/unread to update the toolbar badge count. This request carries only your API token — no page content, no URL, no title.

The only destination for any of the above traffic is the AI Oracle workspace URL you configured (default https://getaioracle.com). The extension does not contact any third-party analytics, advertising, telemetry, or error-reporting service, and it does not load remote scripts.

c. Permissions the extension declares

  • storage. Persists your API token, configured workspace URL, and last-seen-alert timestamp in chrome.storage.local.
  • alarms. Schedules the recurring two-minute inbox poll that updates the toolbar badge.
  • notifications. Shows a desktop notification when a new alert arrives in your AI Oracle inbox while the extension is running.
  • activeTab + scripting. Reads the title, URL, current text selection, and (for non-Google sources during Reconcile) the body text of the tab you have explicitly clicked the AI Oracle icon on. Used only for Capture and Reconcile, and only on the active tab.
  • tabs. Opens the AI Oracle dashboard, a matched decision, or an inbox item in a new tab when you click a result inside the extension popup or a notification.
  • host_permissions: getaioracle.com and aioracle-vert.vercel.app. The two URLs the extension is allowed to call. aioracle-vert.vercel.app is AI Oracle's project-controlled staging deploy and is included so internal testing builds can talk to staging without a code change. The extension does not have host permissions for any third-party site.
  • content_scripts on <all_urls>. Injects the floating capture button and runs the opportunistic match nudge described above on http(s) pages. The script bails out inside iframes and on browser-internal URLs, never injects remote code, and only transmits to your configured AI Oracle workspace.

d. Retention and deletion

Data the extension transmits is governed by the retention rules in this Policy for the AI Oracle account it is sent to (see Section 7 below for retention, and Section 9 for your access, correction, and deletion rights). The extension itself retains nothing on AI Oracle's servers beyond what the corresponding API endpoint stores; uninstalling the extension does not by itself delete content already saved to your account, which you can edit or delete from inside the AI Oracle web app.

7. Data retention

We retain account data and content you create for as long as your account is active. When you delete your account or remove a connection, the corresponding tokens and content are deleted within 30 days, except where retention is required by law or reasonably necessary for security investigation. Service logs are retained for up to 90 days.

8. Security

Blast Off Apps uses HTTPS in transit and relies on Supabase's at-rest encryption for the database. OAuth tokens and client secrets are stored in plaintext columns today and will be moved to encrypted-at-rest storage in a near-term release. Access to production data is limited to authorized personnel of Blast Off Apps LLC.

No system is perfectly secure. If we discover a breach affecting your personal data, we will notify you and any required regulator without undue delay and in line with applicable law.

9. Your choices and rights

  • Access and portability. Email adam@blastoffapps.com to request a copy of the personal data Blast Off Apps holds about you.
  • Correction and deletion. You can edit or delete decisions, memories, and connections from within the Service. To correct or delete other personal data, or to delete your entire account, email the address above.
  • Disconnect a service. Use the Connections page to remove a connection at any time. You can also revoke AI Oracle's access from the third party itself (e.g. myaccount.google.com/permissions for Google).
  • Object or restrict. You may object to or request that we restrict certain processing activities. Where processing is based on your consent, you may withdraw consent at any time without affecting prior processing.
  • Lodge a complaint. If you are in the EEA or UK, you have the right to lodge a complaint with your local data-protection authority.

We will respond to verifiable rights requests within the time required by applicable law (typically 30–45 days).

10. California residents (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act ("CCPA"), grants you specific rights regarding your personal information. The categories of personal information Blast Off Apps collects, the purposes for which we collect them, and the categories of recipients are described in Sections 1, 2, and 5 above.

  • Right to know. You may request the categories and specific pieces of personal information we have collected about you in the past 12 months.
  • Right to delete. You may request that we delete your personal information, subject to certain legal exceptions.
  • Right to correct. You may request correction of inaccurate personal information we maintain about you.
  • Right to opt out of sale or sharing. Blast Off Apps does not sell or "share" (as defined under the CCPA) your personal information, and has not done so in the preceding 12 months.
  • Right to non-discrimination. We will not discriminate against you for exercising any of these rights.

To exercise any CCPA right, email adam@blastoffapps.com. We will verify your request based on the email associated with your account.

11. Children

The Service is not directed to children under 13 (or under 16 in the EEA / UK), and Blast Off Apps does not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us and we will delete it.

12. International transfers

Blast Off Apps' infrastructure is hosted in the United States. If you access the Service from outside the United States, your information will be transferred to and processed in the United States. Where required by law (including for transfers from the EEA and UK), Blast Off Apps relies on standard contractual clauses with its subprocessors and applies appropriate technical and organizational safeguards.

13. Changes to this Policy

Blast Off Apps may update this Policy from time to time. Material changes will be posted on this page with a new effective date and, where reasonably possible, communicated by email. Your continued use of the Service after the effective date constitutes acceptance of the updated Policy.

14. Contact

Privacy questions, data-rights requests, and breach reports:

Blast Off Apps LLC
Registered in the State of West Virginia, USA
Email: adam@blastoffapps.com