Privacy policy
Last updated: July 4, 2026
This policy explains what personal data omegas.dev ("Omegas", "we", "us") collects when you use omegas.dev and the Omegas service, how we use it, who processes it for us, and the choices you have. Omegas is a service where AI agents do work in applications you connect, so most of the data we handle is data you bring to it and data those agents produce while working for you.
1. Data we collect
1.1 Account data
When you create an account we collect your name, email address, and authentication data (session identifiers and, where applicable, credentials handled by our authentication system). If you belong to a workspace, we also record your membership and role.
1.2 Connected-app data
When you connect a third-party application (Slack, email, and other apps), the connection is established through Pipedream. OAuth tokens and other connection credentials for your apps are stored and managed by Pipedream's connection infrastructure; we hold references to those connections and use them to act in your apps at your direction. When agents work, they read data from your connected apps (messages, documents, records) to the extent needed for the task you gave them.
1.3 Conversation and evidence data
We store your conversations with agents, the tasks you assign, proposed actions and your approval decisions, and the evidence trails of what agents did (including relevant excerpts of connected-app data that document each action). Evidence records exist so you can verify the work; they are part of your account data.
1.4 Wallet and billing data
We keep a ledger of your wallet: deposits, usage draw-downs, and balance. Card and payment details are collected and processed by Stripe, not by us; we receive confirmation of payments and limited metadata (such as the last digits of a card) needed to show you your billing history.
1.5 Usage and technical data
We collect logs necessary to operate and secure the service: IP addresses, browser and device information, timestamps, and error and performance data.
2. How we use data
- To provide the service: run agents, execute approved actions, and show you evidence of the work.
- To operate your wallet and bill usage.
- To secure the service, prevent abuse, and debug problems.
- To communicate with you about your account, including service and billing notices.
- To comply with legal obligations.
We do not sell your personal data, and we do not use your conversation or connected-app data for advertising.
3. Processors and subprocessors
We use a small set of service providers to run Omegas. They process data only to provide their service to us:
- Railway — application hosting and databases.
- Cloudflare — networking, content delivery, and security in front of the service.
- Stripe — payment processing for wallet deposits.
- Anthropic and AWS Bedrock — model providers; conversation content and task-relevant data are sent to them to generate agent responses. We use these providers under terms that do not permit them to train models on your data.
- Pipedream — connected-app infrastructure; stores and manages OAuth tokens for your connected applications.
Your connected applications themselves (for example Slack or your email provider) receive the actions you approve; their handling of that data is governed by their own privacy policies.
4. Retention
We keep your account, conversation, evidence, and ledger data for as long as your account is active. Evidence and ledger records are retained because they document actions taken and amounts billed. When you delete your account, we delete your personal data within 30 days, except data we must keep for legal, tax, or dispute purposes (such as billing records), which we keep only as long as required. Backups are purged on a rolling schedule after deletion. Disconnecting an app revokes our access to it going forward; evidence records of past actions remain until you delete them or your account.
5. Your rights
You can access and export your data, correct your account information, disconnect connected apps, and delete conversations or your entire account. To exercise a right you cannot reach in the product, or to ask about data we hold, contact noureddin@omegas.dev. Depending on where you live, you may have additional statutory rights (such as access, rectification, erasure, portability, and objection under GDPR-style laws); we honor such requests as required by the law that applies to you.
6. Cookies
We use cookies only for session authentication: keeping you signed in and protecting your session. We do not use advertising or cross-site tracking cookies. Blocking the session cookie will prevent you from staying signed in.
7. Security
We protect data with encryption in transit, access controls, and the isolation of connected-app credentials in Pipedream's managed token store. Write actions in your apps pass through approval gates by default. No system is perfectly secure; if we learn of a breach affecting your personal data, we will notify you as required by law.
8. International transfers
Our providers operate infrastructure in multiple regions, so your data may be processed outside your country. Where required, transfers are covered by appropriate safeguards such as standard contractual clauses offered by our providers.
9. Children
The service is not directed to children and may not be used by anyone under 18. We do not knowingly collect data from children; if you believe a child has provided us data, contact us and we will delete it.
10. Changes to this policy
We may update this policy as the service evolves. If a change is material, we will give notice (for example by email or in the service) before it takes effect. The date at the top shows when this policy was last revised.
11. Contact
Privacy questions and requests: noureddin@omegas.dev. General contact: hello@omegas.dev.