Privacy Policy

AevosOS, Inc. ("AevosOS," "we," "us," or "our") operates the AevosOS Enterprise AI Operating System (the "Service"). This Privacy Policy explains how we collect, use, disclose, and protect information about you when you access or use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

Account Information: When you register, we collect your name, email address, and any profile information you provide (title, company, preferences).

Third-Party Communication Data: With your explicit OAuth authorization, AevosOS connects to third-party messaging and email platforms — including Google Gmail, Meta WhatsApp, Telegram, SMS (via Twilio), and Slack — solely to retrieve, aggregate, and prioritize your incoming communications within the Service. We access only the minimum data necessary ("least privilege") to render the Service. We do not store the full content of your messages beyond what is required to display them in your AevosOS inbox, and we do not retain message content after you disconnect a service or delete your account.

AI Processing of Communications: AevosOS uses artificial intelligence — including third-party large language model APIs — to analyze, score, summarize, and prioritize your messages. This processing occurs on a per-request basis to deliver the Service. Your personal data and message content are never used to train any public or shared AI model. Data sent to AI processing APIs is governed by those providers' data processing agreements, which prohibit training on customer data.

OAuth Tokens: Access tokens for all connected services are encrypted at rest using AES-256-GCM and are never shared with third parties outside the scope of delivering the Service.

Usage Data: We may collect standard server logs including IP address, browser type, pages visited, and timestamps to operate and improve the Service.

We use the information we collect to:

• Provide, operate, and improve the Service;
• Connect to third-party platforms on your behalf to retrieve and aggregate your communications;
• Apply AI-based gravity scoring to rank and surface high-priority messages;
• Authenticate you and maintain the security of your account;
• Send you operational communications (e.g., account alerts, security notices);
• Comply with legal obligations.

We do not sell your personal information or your communications data to any third party. We do not use your communication content to train AI models, whether proprietary or third-party.

The Service integrates with third-party platforms including Google (Gmail), Meta (WhatsApp), Twilio (SMS), Telegram, and Slack. Your use of these integrations is subject to those platforms' respective terms of service and privacy policies. We access these services solely via their official APIs and only with your explicit OAuth authorization.

Google API Services: AevosOS's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. AevosOS does not use Google user data for serving advertisements, does not allow humans to read your Gmail data except with your express permission or as required by law, and does not use or transfer Google user data to train AI models.

Meta / WhatsApp: AevosOS accesses WhatsApp message data solely to display and prioritize your messages within the Service. We access only the minimum required scope. You may revoke this access at any time from the WhatsApp or Facebook app settings, or from within AevosOS Settings.

We retain your account data for as long as your account is active or as needed to provide the Service. Message content is processed in real-time and is not retained beyond the current session unless you explicitly save or star a message within the Service. OAuth tokens are deleted immediately upon disconnection of a service or deletion of your account.

You may request deletion of your account and all associated data at any time from the Settings → Danger Zone section of the application, or by contacting us at privacy@aevosos.com. We will process deletion requests within 30 days.

We implement industry-standard technical and organizational measures to protect your information, including AES-256-GCM encryption of OAuth tokens at rest, TLS 1.2+ encryption in transit, and strict row-level access controls in our database. No system is 100% secure; we encourage you to use a strong, unique password and to notify us immediately at privacy@aevosos.com if you suspect unauthorized access.

Depending on your jurisdiction, you may have the right to:

• Access a copy of the personal data we hold about you;
• Request correction of inaccurate data;
• Request permanent deletion of your data (see Data Deletion Instructions above);
• Object to or restrict certain processing;
• Revoke OAuth authorization for any connected third-party service at any time;
• Data portability (where applicable).

To exercise any of these rights, contact us at privacy@aevosos.com.

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us immediately at privacy@aevosos.com.

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the effective date. Your continued use of the Service after any changes constitutes your acceptance of the revised policy.

If you have questions or concerns about this Privacy Policy, please contact us at: