Privacy Policy
Version 1.3 · Last updated 2026-04-12
The Short Version
OmniSpace is a wellness and reflection tool — not a medical device and not a substitute for professional care. We don't sell your data. We don't show you ads. We don't track you.
With AI features disabled: All your content stays on your device. Nothing leaves. We never see it.
With AI features enabled: Content you submit is sent to third-party providers (Anthropic for AI processing, ElevenLabs for voice) for real-time processing. We do not permanently store this content. Per Anthropic's API terms, content may be briefly retained for abuse monitoring. In proxy mode, content passes through our Cloudflare Worker (where it is visible to us in transit) before reaching Anthropic.
Other services: Authentication is handled by Supabase. Crash reports (opt-in, PII scrubbed) go to Sentry. If you publish artifacts, they're sent to our backend.
That's the full picture. The rest of this document explains the details.
With AI features disabled: All your content stays on your device. Nothing leaves. We never see it.
With AI features enabled: Content you submit is sent to third-party providers (Anthropic for AI processing, ElevenLabs for voice) for real-time processing. We do not permanently store this content. Per Anthropic's API terms, content may be briefly retained for abuse monitoring. In proxy mode, content passes through our Cloudflare Worker (where it is visible to us in transit) before reaching Anthropic.
Other services: Authentication is handled by Supabase. Crash reports (opt-in, PII scrubbed) go to Sentry. If you publish artifacts, they're sent to our backend.
That's the full picture. The rest of this document explains the details.
What We Collect
Stored On Your Device (We never see this unless you use AI features)
Sent to Third-Party Providers If You Enable AI Features (Optional)
If You Use Authentication or Sharing (Optional)
If You Enable Crash Reporting (Optional)
If You Create an Account (Optional)
- All journal entries and notes
- Voice recordings
- Soul Signature calculations
- Journey progress
- Calendar events
- Identity bodies
- Inner Sanctum content (AES-256 encrypted with your PIN)
Sent to Third-Party Providers If You Enable AI Features (Optional)
- Text you send to AI-powered Spirit conversations (sent to Anthropic's Claude API)
- Content you submit for AI analysis — element classification, journal summaries, chronicle generation (sent to Anthropic's Claude API)
- Spirit voice text (sent to ElevenLabs for text-to-speech when voice is enabled)
If You Use Authentication or Sharing (Optional)
- Login and signup data (handled by Supabase)
- Published artifacts, if you explicitly choose to share (sent to our backend)
If You Enable Crash Reporting (Optional)
- Crash reports with personal information scrubbed (sent to Sentry)
- You can disable this in Settings
If You Create an Account (Optional)
- Email address — for account recovery (stored by Supabase)
- App preferences
How We Use Data
Your Content (Local Storage)
Your journal entries, recordings, and personal data are stored on your device using local storage. We do not have persistent access to this content.
However, when you use AI-powered features, the content you submit for those features is sent to external providers for processing (see below). You control which features are enabled.
AI Features (Opt-In) When you use AI features (such as Spirit conversations, journal analysis, or element classification), the content you submit is sent to Anthropic's Claude API for processing. In direct mode (BYOK), content goes directly to api.anthropic.com. In proxy mode, content passes through our Cloudflare Worker (where it is visible in transit) before being forwarded to Anthropic. This content is:
You can disable AI features at any time in Settings > AI & Privacy. When disabled, no content is sent to AI providers.
Account Data If you create an account, we use your email only for:
Content Processing vs. Content Analytics AI features analyze your writing on your behalf to provide elemental tagging, spirit responses, and personalized prompts. This processing happens in real-time for your benefit — the results are stored on your device, not on our servers. We do not aggregate, mine, or analyze what you write about for our own purposes. We have no server-side content analytics pipeline. Your content is processed for you, not collected by us.
Crash Reporting We use Sentry for crash reporting (opt-in, PII scrubbed). We do not use ad networks or behavioral profiling services. We do not track session duration, screen time, or engagement metrics — by design.
However, when you use AI-powered features, the content you submit for those features is sent to external providers for processing (see below). You control which features are enabled.
AI Features (Opt-In) When you use AI features (such as Spirit conversations, journal analysis, or element classification), the content you submit is sent to Anthropic's Claude API for processing. In direct mode (BYOK), content goes directly to api.anthropic.com. In proxy mode, content passes through our Cloudflare Worker (where it is visible in transit) before being forwarded to Anthropic. This content is:
- Processed in real-time and not permanently stored by OmniSpace
- Per Anthropic's API terms, content may be briefly retained for abuse monitoring
- Never used for AI model training
- In proxy mode, content is visible to OmniSpace in transit through our Cloudflare Worker
You can disable AI features at any time in Settings > AI & Privacy. When disabled, no content is sent to AI providers.
Account Data If you create an account, we use your email only for:
- Account recovery
- Critical security notifications
- Service updates (opt-out available)
Content Processing vs. Content Analytics AI features analyze your writing on your behalf to provide elemental tagging, spirit responses, and personalized prompts. This processing happens in real-time for your benefit — the results are stored on your device, not on our servers. We do not aggregate, mine, or analyze what you write about for our own purposes. We have no server-side content analytics pipeline. Your content is processed for you, not collected by us.
Crash Reporting We use Sentry for crash reporting (opt-in, PII scrubbed). We do not use ad networks or behavioral profiling services. We do not track session duration, screen time, or engagement metrics — by design.
Data Storage & Security
Local Storage
All personal content is stored locally on your device using secure storage APIs.
Inner Sanctum Encryption Content in the Inner Sanctum is encrypted using AES-256 encryption with a key derived from your PIN. This content is unreadable without the PIN. If you choose to send Inner Sanctum content to AI features for analysis, it is decrypted on your device before being sent to Anthropic for processing.
Backups Cloud backup is a planned feature. When available, your data will be encrypted before leaving your device. The encryption key will be derived from your credentials and will not be stored on our servers.
Inner Sanctum Encryption Content in the Inner Sanctum is encrypted using AES-256 encryption with a key derived from your PIN. This content is unreadable without the PIN. If you choose to send Inner Sanctum content to AI features for analysis, it is decrypted on your device before being sent to Anthropic for processing.
Backups Cloud backup is a planned feature. When available, your data will be encrypted before leaving your device. The encryption key will be derived from your credentials and will not be stored on our servers.
What We Never Do
- Store or retain your journal content on our servers
- Sell your data to anyone — ever
- Share data with advertisers or data brokers
- Use your content for AI model training (Anthropic's API policy explicitly prohibits this)
- Aggregate or analyze what you write about for our own purposes
- Track session duration, screen time, or engagement metrics
- Create behavioral profiles
- Track your location
- Silently send data — all network calls are user-initiated or clearly disclosed
- Use dark patterns to prevent deletion or discourage leaving
- Send marketing emails without consent
Your Rights
Export
You can export your data in a portable format. Note: Inner Sanctum content is encrypted with your PIN — if you lose your PIN, this content cannot be recovered or exported.
Delete You can delete all data from the app at any time. If you have an account, you can request complete account deletion via the app or by emailing support@azothic.app.
Portability Your data belongs to you. We support data export so you can take it elsewhere.
Delete You can delete all data from the app at any time. If you have an account, you can request complete account deletion via the app or by emailing support@azothic.app.
Portability Your data belongs to you. We support data export so you can take it elsewhere.
Children's Privacy
OmniSpace is designed for users 18 and older. We do not knowingly collect information from anyone under 18. If you believe a minor has created an account, contact us at support@azothic.app and we will delete the account and any associated data.
Changes to This Policy
If we change this policy significantly, we'll notify you through the app and give you time to review changes before they take effect. Minor clarifications won't require notification.
Contact
Questions about privacy? Contact us at omar@azothic.app
We're real people who care about your privacy.
We're real people who care about your privacy.