Privacy Policy

1. What Data We Collect

Personal AI collects the following types of data to provide services:

1.1 User-provided Data

• Configuration Information: API keys, service endpoints, and other configuration items you set
• Chat Messages: Messages and related metadata you analyze through the extension
• Work Data: Jira tickets, Google Slides, Sheet data and other work-related information
• Memory Entities: People, projects, topics and other entities you choose to save

1.2 Automatically Collected Data

• Usage Statistics: Feature usage frequency, error logs (does not include specific content)
• Browser Information: Browser type, version, language settings
• Extension Version: Installed Personal AI version number

2. How We Use Your Data

Your data is used only for the following purposes:

2.1 Provide Services

• Process and analyze messages, extract important information
• Store and retrieve memory entities, provide smart recommendations
• Sync work data, generate project progress reports
• Execute scheduled messages, automation tasks

2.2 Improve Services

• Analyze usage patterns, optimize feature design
• Fix bugs, improve stability
• Develop new features, enhance user experience

2.3 What We Do NOT Do

• ❌ Do not sell your data to any third party
• ❌ Do not use your data to train general AI models
• ❌ Do not share your data with advertisers
• ❌ Do not use your data for unrelated purposes

3. Data Storage and Security

3.1 Local Storage

Most data is stored locally on your device:

• Memory Database: Stored in local Chrome storage, accessible only to you
• Configuration Information: Stored locally in the extension
• Chat History: Stored locally, not uploaded to servers

3.2 Cloud Storage

Some data requires cloud storage:

• Google Sheets Data: Stored in your Google Drive, controlled by you
• Jira Data: Stored in your company's Jira instance
• API Calls: Only to services you configure (OpenAI, Claude, etc.)

3.3 Security Measures

• All network communications use HTTPS encryption
• API keys are encrypted and stored in local Chrome storage
• No central server, no single point of data breach risk
• Regular security audits and vulnerability fixes

4. Third-party Services

Personal AI may call the following third-party services (only when you configure and authorize):

4.1 AI Services

• OpenAI API: For message analysis, text generation, etc.
• Anthropic Claude API: For advanced analysis tasks
• Google Gemini API: Alternative AI service

Note: When using these services, your data will be sent to the corresponding service provider. Please read their privacy policies.

4.2 Work Platforms

• Google Workspace: Access Sheets, Slides, etc. (requires OAuth authorization)
• Atlassian Jira: Read and write ticket data (requires API token)
• RingCentral: Chat message access (requires login)

Note: Personal AI will only access data you explicitly authorize, and strictly follows each platform's API usage policy.

5. Google API Services Data Usage

Personal AI's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including Limited Use requirements.

5.1 What Google User Data We Access

Personal AI accesses the following Google user data through Google Workspace APIs (only when you explicitly authorize via OAuth 2.0):

Google Sheets API

• Data Accessed: Spreadsheet content, cell values, formulas, formatting, and metadata from sheets you authorize
• Permissions: Read and write access to create, update, and manage spreadsheets
• Purpose:
  • Synchronize Jira ticket data to Google Sheets for tracking and reporting
  • Create and manage scheduled message data tables
  • Deploy Google Apps Script for automated message scheduling

Google Slides API

• Data Accessed: Slide content, text, images, and presentation structure from presentations you authorize
• Permissions: Read-only access to analyze slide content
• Purpose:
  • Analyze project progress information from presentation slides
  • Extract and organize content to help you create summaries
  • Assist in content organization and information retrieval

Google Drive API

• Data Accessed: File metadata and content for Sheets and Slides files you explicitly authorize
• Permissions: Limited access to files created by or shared with the application
• Purpose:
  • Store and retrieve spreadsheets created for scheduled messages
  • Access presentations you choose to analyze

Important: Personal AI does NOT access your Gmail, Google Calendar, Google Contacts, Google Photos, or any other Google services not explicitly listed above.

5.2 How We Use Google User Data

Google user data is used exclusively to provide and improve the user-facing features you request:

• Jira Synchronization: Read Jira data and write to your Google Sheets for project tracking
• Scheduled Messages: Create and manage Google Sheets with Apps Script to automate message delivery
• Content Analysis: Read Google Slides content to help you organize and summarize information
• Data Visualization: Display synchronized data in the extension interface

All data processing happens:

• Only when you explicitly request a feature
• Within the scope of the specific task you initiated
• In compliance with Google's Limited Use requirements

5.3 How We Share Google User Data

Personal AI does NOT share, sell, or transfer your Google user data to any third parties.

Your Google data may only be transferred in the following limited circumstances:

• To Google Services: Data is sent back to Google APIs only as necessary to provide the features (e.g., writing data to your Google Sheets)
• To AI Services (Optional): If you configure AI analysis features, text content may be sent to AI providers (OpenAI, Claude, Gemini) you explicitly configure. This is optional and requires your separate API key configuration.
• No Other Third Parties: We do not transfer data to advertisers, data brokers, or any other external entities

5.4 How We Protect Google User Data

We implement industry-standard security measures to protect your Google user data:

• Encryption in Transit: All data transmission between Personal AI and Google APIs uses HTTPS/TLS encryption
• Secure Authentication: OAuth 2.0 tokens are encrypted and stored securely in Chrome's local storage
• Minimal Data Retention: We only cache data temporarily in local storage for performance; no data is stored on remote servers
• Access Control: The extension only accesses data you explicitly authorize through OAuth consent screens
• No Central Database: Personal AI does not maintain any central server or database storing your Google data

5.5 Data Retention and Deletion

How Long We Keep Google User Data:

• OAuth Tokens: Stored locally until you revoke access or uninstall the extension
• Cached Data: Temporarily stored in local browser storage, automatically cleared when you close the browser or clear browsing data
• Created Spreadsheets: Remain in your Google Drive under your control until you delete them

How to Delete Your Data:

1. Revoke Access: Go to Google Account Permissions → Find "Personal AI" → Click "Remove Access". All OAuth tokens will be immediately invalidated.
2. Clear Local Data: Uninstall the extension or clear Chrome browsing data to remove all locally cached information
3. Delete Spreadsheets: Delete any spreadsheets created by Personal AI from your Google Drive
4. Contact Us: Email us at privacy@personal-ai.example.com to request complete data deletion

5.6 Your Control Rights

You have complete control over your Google data:

• Granular Permissions: Choose which specific files and folders to authorize
• Revoke Anytime: Revoke access at any time through Google Account settings
• Audit Access: View all access history in your Google Account activity log
• Delete Data: Delete any data created by Personal AI from your Google Drive

6. Your Rights

You have the following rights regarding your data:

6.1 Access and Export

• View all data stored locally in the extension
• Export memory database (JSON format)
• Export configuration information

6.2 Modification and Deletion

• Modify or delete any memory entity
• Clear all local data
• Uninstall the extension, all data will be completely removed

6.3 Control and Authorization

• Choose which features to enable
• Choose which third-party services to integrate
• Revoke any previously granted authorizations anytime

7. Data Retention

7.1 Local Data

Stored locally until:

• You manually delete
• Intelligent forgetting mechanism automatically cleans up
• You uninstall the extension
• You clear browser data

7.2 Cloud Data

Retention periods determined by respective services:

• Google Sheets data: Until you delete from Google Drive
• Jira data: According to your company's Jira retention policy
• API call logs: According to the corresponding service provider's policy

8. Children's Privacy

Personal AI is designed for business users and is not intended for children under 13. We do not knowingly collect information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

9. Privacy Policy Updates

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. When we make significant changes:

• Update the "Last Updated" date at the top of this page
• Notify you through the extension (for major changes)
• Request your re-authorization (for changes requiring additional permissions)

Continued use of Personal AI after policy updates indicates your acceptance of the updated policy.

10. Contact Us

If you have any questions or concerns about this privacy policy or data handling, please contact us through:

• Email: privacy@personal-ai.example.com
• GitHub Issues: Submit Issue
• Documentation: View Full Documentation

11. Regulatory Compliance

Personal AI complies with the following data protection regulations and standards:

• GDPR: European Union General Data Protection Regulation
• CCPA: California Consumer Privacy Act
• Google API Services User Data Policy: Including Limited Use requirements
• Chrome Web Store Developer Program Policies