Privacy Policy
Aurai (“we”, “us”) is a personal operating system for habits, planning, nutrition, finances, capture, knowledge, and related workflows. This policy explains what we collect during the current private / allowlisted beta and how that information is used.
Who this applies to
During private beta, access to the app is limited to approved accounts. The public marketing site at aurai.boo may still collect waitlist, support, and contact submissions from visitors.
Information we collect
- Account data — name, email, and profile image from Google sign-in (or equivalent workshop/local profiles in development).
- App content you create — habits, plans, captures, finance records, macros, Atlas notes, settings preferences, and similar product data.
- Technical data — basic request metadata needed to run the service (for example timestamps and rate-limit signals).
- Website intake — waitlist emails, support tickets, and contact messages you submit on aurai.boo.
- Optional Apple integrations — if you enable Calendar, Reminders, or Health on iOS, relevant data is read on-device according to the permission you grant. Those integrations stay off until you turn them on.
How we use information
- To provide and sync your Aurai workspace across signed-in devices.
- To authenticate you and protect the private beta allowlist.
- To respond to support and contact requests.
- To improve reliability and security of the product.
We do not sell personal information.
AI features
Optional AI features may send prompts and relevant context to providers you configure (for example OpenAI or OpenRouter). API keys you enter are stored encrypted at rest on Aurai’s server and are never included in data exports. Do not include secrets in prompts that you do not want a provider to process.
Where data lives
Canonical app data is stored in Aurai’s backend database hosted on Fly.io. Device preferences (theme, some UI settings, local API keys) may also live in browser or app storage on your device. Desktop and mobile clients talk to the same account-backed service.
Sharing
We share data only with infrastructure and authentication providers needed to run Aurai (for example hosting and Google sign-in), when required by law, or when you ask us to (for example by submitting a support request).
Retention
We keep account and app data while your account remains active. When you delete your account, your data is removed from the live database immediately; copies inside routine encrypted backups age out of the backup rotation within days. Website intake submissions are kept so we can respond and operate the waitlist/support workflow.
Your choices and data rights
- Export everything — Settings → Account → “Export data” downloads a single JSON file with all of your Aurai content. API keys and passwords are never included.
- Delete your account — Settings → Account → “Delete account” permanently erases your account and all of your data. This cannot be undone, so export first if you want a copy.
- UI preferences (theme, layout) can also be exported from Settings → About & Data.
- You can revoke Apple permissions in iOS Settings at any time.
- You can sign out from Settings → Account.
Children
Aurai is not directed at children under 13, and we do not knowingly collect their data.
Security
We use industry-standard transport encryption (HTTPS), authenticated sessions, and access controls appropriate for a private beta. No method of storage or transmission is perfectly secure.
Contact
For privacy questions, data export, or deletion requests, use the support form at aurai.boo/#contact. We do not publish a public support email address.
Changes
We may update this policy as the product matures. The “Last updated” date above will change when we do. Material changes before public launch will be reflected here.