LogionOS Inc. ("LogionOS," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI compliance platform, APIs, dashboard, browser extension, and related services (collectively, the "Service").
When you register for the Service, we collect:
When you submit queries to the LogionOS API for compliance analysis, we process:
We automatically collect:
| Purpose | Legal Basis |
|---|---|
| Provide and operate the compliance checking service | Performance of contract |
| Generate audit logs and compliance reports | Performance of contract |
| Monitor service performance and uptime | Legitimate interest |
| Improve service quality and accuracy | Legitimate interest |
| Send service notifications and updates | Performance of contract |
| Comply with legal obligations | Legal obligation |
| Train and improve compliance detection models (opt-in only) | Consent |
By default, LogionOS does not use your compliance query content to train machine learning models. Your submitted content is processed in real-time for compliance analysis and stored only as part of your audit logs (as cryptographic hashes, not raw text).
Opt-In Compliance Intelligence: You may choose to participate in our Compliance Intelligence program, which uses anonymized and de-identified compliance telemetry to improve our detection models. If you opt in:
Founder Program participants are encouraged to opt in as part of the program's value exchange. Enterprise customers on dedicated plans may negotiate custom data handling terms.
Session receipts generated by the Creator Risk Layer have tier-specific retention windows. Each receipt is a hash-chained record of the checks your extension ran and the signals we returned.
| Plan | Receipt Retention |
|---|---|
| Trial | 7 days after the receipt is closed |
| Basic | 30 days |
| Team | 90 days (team members with access can view any team receipt within this window) |
| Enterprise | 365 days, or a custom term negotiated in your Master Services Agreement |
You can export any receipt as a signed JSON bundle from the Dashboard or extension before its retention window closes. Team-tier customers can also export receipts as PDF. Exported bundles and PDFs are yours to retain indefinitely.
By default, we do not retain raw query text from Creator Risk Layer checks beyond the hash-chained event entries required to produce your receipts (the receipt events reference a SHA-256 hash of the check payload, not the raw text). We do retain structural metadata: target venues, action_type, which rule IDs fired, and the resulting safety_status.
You may opt in to Creator Telemetry in the Dashboard. When opted in, we additionally retain anonymized, PII-removed snippets of checks that fired strong disclosure rules — used solely to improve our risk-signaling accuracy. Opting out at any time stops new telemetry collection; historical anonymized-aggregate data remains in our model-improvement datasets without any link back to your account.
We do not sell your personal information. We may share information only in the following circumstances:
We implement industry-standard security measures including:
Our Service is hosted on infrastructure that may process data in the United States. If you are located outside the United States, your data may be transferred to and processed in the US. We take appropriate safeguards to ensure your data is protected in accordance with this Privacy Policy and applicable data protection laws.
Depending on your jurisdiction, you may have the following rights:
To exercise any of these rights, please contact us at chris@logionos.com. We will respond within 30 days.
If you are in the EEA, we process personal data under the legal bases described in Section 2. You have the right to lodge a complaint with your local data protection authority.
California residents have the right to know what personal information is collected, request deletion, and opt out of the sale of personal information. We do not sell personal information.
We comply with the Act on the Protection of Personal Information. Japanese residents may request disclosure, correction, or deletion of personal data by contacting us.
UK residents have equivalent rights under the UK GDPR. Our data protection practices comply with the requirements of the UK Data Protection Act 2018.
We comply with the Personal Data Protection Act 2012 (as amended). Singapore residents may contact us to access or correct personal data.
The LogionOS Chrome Extension ("LogionOS for Creators") surfaces citation, mimicry, and disclosure risk signals for AI-assisted drafts on supported AI platforms (ChatGPT, Claude, Google Gemini), and records a tamper-evident receipt of each check. The following disclosures apply specifically to the extension:
| Permission | Purpose |
|---|---|
storage | Save user preferences, daily statistics, and recent check history locally in Chrome |
activeTab | Detect which AI platform tab is active |
scripting | Inject the compliance interceptor on supported AI platform pages |
| Host permissions | Run content scripts on chatgpt.com, claude.ai, gemini.google.com only |
| Optional host permissions | Connect to user-configured API endpoint (requested only when a custom API URL is set for on-premise deployments) |
chrome.storage.localIf you participate in the LogionOS Founder Program, the following additional data practices apply:
When you apply to the Founder Program (via our application form), we collect:
This data is used to evaluate your application, manage your Program participation, and for internal analytics (e.g., understanding which industries or regions are most represented in our user base).
During your Program participation, we track:
This data helps us monitor Program health and identify participants who may need support or who are approaching their usage limits.
Anonymized, aggregated statistics from the Founder Program (e.g., "X% of participants are in fintech") may be used in product improvement, internal reporting, and investor communications. No individual company data is ever disclosed without explicit written permission.
Our website uses minimal cookies for essential functionality only. The Enterprise Dashboard uses localStorage for session management. We do not use third-party advertising trackers.
The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we discover we have collected data from a child, we will delete it promptly.
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website with a new "Last updated" date.
If you have questions about this Privacy Policy or our data practices, please contact:
LogionOS Inc.
Data Protection Inquiries
Email: chris@logionos.com
Website: https://logionos.com