Privacy Policy

Effective Date: April 20, 2026 · Version 1.0

This Privacy Policy describes how LifeOS ("we," "us," or "LifeOS") collects, uses, stores, and protects your personal information when you use the LifeOS application at thelifeosapp.com (the "Service"). LifeOS is a personal life-management application for organizing finances, goals, habits, tasks, relationships, and related personal data. We are committed to protecting your privacy and to being transparent about what we do with your information.

Short version: LifeOS stores your data to show it back to you. We do not sell it, share it with advertisers, or use it to train AI models. You can disconnect any third-party integration at any time and delete your account on request. Financial data accessed via Plaid is stored encrypted at rest and never leaves our infrastructure.

1. Information We Collect

1.1 Account Information

When you create a LifeOS account, we collect information via Google Sign-In / Firebase Authentication: your email address, display name, Google-assigned user ID, and profile photo (if available from your Google account). We do not receive or store your Google password.

1.2 Profile Information You Provide

As you use LifeOS, you may voluntarily add personal information including (but not limited to): name, phone, birthday, location, bio, interests, hobbies, student status, and relationships with contacts. All of this is optional and controlled by you.

1.3 Financial Information via Plaid

If you choose to connect a financial institution using Plaid, we receive the following data through Plaid's API:

Account metadata (institution name, account type/subtype, account name, last four digits of the account number — the "mask")
Account balances (current and available)
Transaction history (date, amount, merchant, category, pending status)
Investment holdings (if your institution and account support it): ticker, name, quantity, market value, cost basis
A Plaid-issued access_token that authorizes LifeOS to re-fetch the above data on your behalf

We do not receive or store your online banking credentials. Those are entered directly into Plaid's secure interface during the Plaid Link flow and never transit LifeOS's systems.

1.4 Data from Other Integrations

If you enable optional integrations (all off by default), we may receive:

Google Calendar / Gmail (via Google OAuth): events, message metadata, and message bodies you have explicitly synced
Anthropic Claude: the text of prompts you generate inside the app (used only to fulfill your AI requests; subject to Anthropic's privacy policy)

1.5 Automatically Collected Information

Standard web-server logs (IP address, user agent, request path, timestamp) for operational purposes. We do not use third-party advertising trackers, analytics cookies, pixel trackers, or session recording tools.

2. How We Use Your Information

We use your information solely to provide the Service to you:

Display your accounts, transactions, goals, habits, and other data back to you inside the LifeOS interface
Categorize transactions, generate budget summaries, detect subscriptions and transfers, compute net worth, and power the financial dashboard
Generate AI-assisted summaries and plans (weekly digests, day plans, check-in narratives) using Anthropic Claude when you invoke those features
Send transactional email (activity invites, connection notifications) when you initiate them
Maintain security, diagnose issues, and prevent abuse

We do not:

Sell, rent, or trade your personal information to third parties
Share your data with advertisers or data brokers
Use your personal data to train AI models (ours or anyone else's)
Send marketing or promotional email without your explicit consent

3. How Your Data Is Stored and Protected

3.1 Storage Locations

Application database: your LifeOS state (profile, goals, habits, tasks, transactions, etc.) is stored in Google Cloud Firestore and mirrored to an application server hosted on DigitalOcean in the United States.
Plaid data: access tokens, account metadata, transactions, and holdings are stored on the DigitalOcean application server only. They are not written to Firestore or any client device.
Backups: server snapshots are retained at the infrastructure level by DigitalOcean. All backups inherit disk-level encryption.

3.2 Encryption

In transit: TLS 1.2 or higher for all traffic to and from LifeOS (Let's Encrypt certificate). HTTP requests are redirected to HTTPS.
At rest: DigitalOcean block storage is encrypted at the infrastructure layer with AES-256. Google Cloud Firestore data is encrypted at rest with AES-256 per Google Cloud's platform default.

3.3 Access Controls

Access to production infrastructure is restricted to a single operator using SSH key-based authentication (no passwords) and multi-factor authentication on all administrative consoles (DigitalOcean, Google Cloud / Firebase, GitHub, Plaid dashboard).
Firestore security rules enforce that each authenticated user can only read and write their own data.
Admin-gated endpoints on the application server check the operator's Firebase UID before executing privileged operations.

4. Data Sharing and Disclosure

We share your data only with the third-party service providers required to deliver specific features you have chosen to use:

Google LLC (Firebase Authentication, Firestore, optional Google Calendar / Gmail) — policy
Plaid, Inc. (bank-account connection and financial data) — end-user policy
Anthropic PBC (Claude AI, only when you trigger an AI feature) — policy
DigitalOcean, LLC (application hosting) — policy

We may also disclose data if required by law, to respond to valid legal process, or to protect the rights, property, or safety of LifeOS, our users, or others.

5. Your Rights and Choices

5.1 Disconnect a Financial Institution

You can disconnect any bank or financial account at any time from the Finance → Institutions tab. When you disconnect, LifeOS calls Plaid's /item/remove endpoint to invalidate the access token on Plaid's side and deletes the associated record from our server. Transactions that were already imported remain in your account history unless you delete them.

5.2 Disable an Integration

Google Calendar, Gmail, and Anthropic API access can each be revoked independently from Settings → Integrations, or by revoking access at the third-party provider.

5.3 Export Your Data

You can export the data LifeOS holds about you by contacting us using the information below. We will provide a machine-readable export within thirty (30) days.

5.4 Delete Your Account

You can request account deletion by contacting us. Upon deletion we will:

Call Plaid's /item/remove for each connected institution to invalidate all access tokens
Delete your Firestore records
Delete your server-side state, Plaid item records, and any cached data
Remove your allowlist / access-request records

Some information may remain in encrypted server backups for a limited period before being rotated out (typically no longer than thirty (30) days).

5.5 Privacy Rights (California, EU/UK, other jurisdictions)

Depending on your location, you may have additional rights — to know what data we have, to correct it, to request deletion or portability, to opt out of certain processing, or to appeal a decision. To exercise any of these rights, contact us using the information below. We do not sell personal information.

6. Data Retention

We retain your information for as long as your account is active. Specifically:

Profile and application state: retained until you delete your account
Transactions and holdings imported via Plaid: retained until you disconnect the institution or delete your account
Plaid access_token: retained until you disconnect or your account is deleted, then the token is invalidated with Plaid and removed from our systems
Server logs: rotated on a rolling 30–90 day window

7. Children's Privacy

LifeOS is not directed to children under 13 years of age and we do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a child under 13, contact us and we will delete it.

8. International Users

LifeOS is operated from the United States. If you access the Service from outside the U.S., you understand and consent to the transfer of your information to and processing in the United States, subject to this Privacy Policy.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The effective date at the top of this page always shows the current version. If we make material changes, we will notify you by email or by a prominent notice within the Service before the changes take effect.

10. Contact

Questions, requests, or concerns about this Privacy Policy or your data:

Email: michael.m.martens@gmail.com
Mail: LifeOS, c/o Michael Martens (address provided on request)

We aim to respond to all inquiries within seven (7) business days.