My·Operating·System
Personal OS

Privacy Policy

Last updated: April 14, 2026

This policy explains what data MyOperatingSystem.ai collects, how we use it, and the choices you have. The Service is operated by InteGrow AI.

1. What we collect

  • Account info: email, full name, optional company name, hashed password (or OAuth provider ID if you sign in with Google).
  • Workspace content: the Markdown files, jobs, prompts, and conversations you create. This is the data you came here to manage.
  • Usage events: per-API-call records of token counts and cost in USD, used to enforce monthly caps and show you the /usage page.
  • Operational logs: standard server logs (IP, request path, response code, timestamp). We do not log message content.

2. How we use it

  • To run the Service and let you chat with your operating system
  • To enforce your plan's monthly cap and bill you
  • To debug and improve the Service
  • To contact you about your account or critical service updates

3. What we share with third parties

Running the Service requires us to send some of your data to other companies acting as data processors on our behalf. We share the minimum needed:

  • Anthropic (LLM provider): receives the parts of your context that the chat route sends — system files, job files, and message history — to generate responses. Anthropic does not train its models on API customer data per their Commercial Terms.
  • Supabase (database, auth, file storage): hosts the Postgres database that contains your account, workspace content, and usage events.
  • Vercel (hosting): runs the web app and forwards requests to our backend.
  • Google (only if you choose Sign in with Google): authenticates you and provides your basic profile (email, name).

We do not sell your data. We do not use it to train AI models.

4. Where your data lives

Database and storage are hosted in the AWS region selected for our Supabase project. Vercel serves the app from edge nodes globally but all data writes go back to the central database.

5. Your rights

Regardless of where you live, you can:

  • Access all your data via the Account → Export button (downloads a ZIP)
  • Correct any inaccurate information by editing your profile or files
  • Delete your account and all associated data via Account → Delete account
  • Withdraw consent by signing out and deleting your account

EU/UK residents have additional rights under GDPR (data portability, objection to processing, complaint to a supervisory authority). California residents have rights under CCPA.

6. Retention

We keep your data for as long as your account is active. When you delete your account, we delete all your workspace content immediately. Backups are retained for up to 30 days as per our backup rotation. Operational logs are retained for 90 days.

7. Security

We use Postgres row-level security to ensure no user can read another user's data. All connections to the Service are encrypted in transit. Passwords are hashed by Supabase using industry-standard algorithms. We follow least-privilege access for admin operations.

8. Cookies

We use cookies set by Supabase Auth to keep you signed in and a single first-party cookie to remember your light/dark theme preference. We do not use third-party tracking cookies.

9. Children

The Service is not directed at children under 18 and we do not knowingly collect data from them.

10. Changes

We will update this policy as the Service evolves. Material changes will be communicated by email to active users and the “Last updated” date will change.

11. Contact

Questions or requests about your data? Email hello@integrowai.com.