OfinisTerms of Use →

Privacy Policy

Effective date: April 21, 2026

1. Introduction

Ofinis (“we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains what information we collect when you use Ofinis, how we use it, and your rights over it. By using the Service you agree to this Policy.

2. Information We Collect

Account information

When you register we collect your name, email address, and a hashed password. Guest users are identified only by an anonymised IP address.

Conversation data

Messages you send to Ofinis are processed to generate a response. Conversation history may be stored temporarily in your session; we do not permanently retain full conversations on our servers unless you explicitly enable memory features.

Usage data

We collect request counts, model used, token counts, and timestamps for billing, rate-limiting, and service improvement purposes.

Technical data

Browser type, operating system, and referring URLs collected automatically via server logs and used solely for security and performance monitoring.

3. How We Use Your Information

  • To provide, maintain, and improve the Service;
  • To authenticate you and manage your account;
  • To enforce our Terms of Use and prevent abuse;
  • To send transactional emails (e.g. account confirmation, API key notifications);
  • To comply with legal obligations.

We do not sell your personal data to third parties. We do not use your conversation content to train AI models without your explicit consent.

4. Cookies & Tracking

Ofinis does not use advertising cookies or third-party tracking pixels. We use only essential session storage (e.g. your authentication token stored in localStorage) to keep you logged in. No cross-site tracking occurs.

5. Data Sharing

We may share data with:

  • Infrastructure providers — cloud hosting and database services that process data on our behalf under strict data processing agreements;
  • Law enforcement — if required by a valid legal request or to protect the safety of users;
  • Business transfers — in the event of a merger, acquisition, or sale of assets, subject to equivalent privacy protections.

6. Data Retention

Account data is retained while your account is active. Upon account deletion we remove your personal information within 30 days, except where retention is required by law. Aggregated, anonymised usage statistics may be retained indefinitely.

7. Security

We implement industry-standard security measures including encrypted connections (TLS), hashed passwords, and API key scoping. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security but commit to promptly notifying affected users in the event of a breach.

8. Children's Privacy

The Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If we become aware of such collection we will delete it promptly.

9. Your Rights

Depending on your jurisdiction you may have the right to:

  • Access the personal data we hold about you;
  • Request correction of inaccurate data;
  • Request deletion of your account and data;
  • Object to or restrict certain processing;
  • Data portability where technically feasible.

To exercise any of these rights, email us at privacy@ofinis.com.

10. International Transfers

Your data may be processed in countries outside your own. Where applicable we ensure adequate protections are in place consistent with GDPR and other privacy regulations.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify registered users of material changes by email or via an in-app notice. The effective date at the top of this page reflects the latest revision.

12. Contact Us

Questions or concerns about this policy? Contact us at privacy@ofinis.com.