Sign in
Legal

Privacy Policy

Last updated2026-05-13Version1.0Contactprivacy@omnizen.ai

1.What We Collect

We collect the minimum information needed to run the omnizen service.

1.1Account information

Your name, email, phone number (managed via Clerk), plan, and payment status.

1.2Usage metadata

Model used, token counts, cost, timestamp, and request ID per routed request. We do not store prompt or response content.

1.3Billing

Subscription history, credit-pack purchases, transaction references from EPS (BDT) and Stripe (USD). We do not store card numbers or bank credentials.

1.4Operational logs

Standard server logs (IP, user-agent) used for security and debugging. Retained for 30 days then deleted.

2.How We Use It

We use the information we collect to:

  • Operate the service - authenticate you, route requests to upstream models, and bill your subscription.
  • Enforce fair-use limits and protect against abuse, fraud, and security threats.
  • Communicate with you about your account, security, and material changes to the service.
  • Measure and improve service performance in aggregate.

3.What We Don't Do

3.1No training on your prompts

omnizen does not train, fine-tune, or evaluate any model on your prompts or responses. Routed requests are forwarded to the selected upstream provider strictly to fulfill the request.

3.2No selling user data

We do not sell, rent, or trade your personal information. We do not share it with brokers, data resellers, or marketing networks.

3.3No third-party ad networks

omnizen does not run advertising, load ad-network scripts, or participate in cross-site tracking.

4.Storage and Security

4.1Encryption

Data is encrypted in transit using TLS 1.2 or higher. Database credentials and provider secrets are stored in environment files outside the source tree.

4.2Where data lives

Primary data is stored on AWS EC2 in the ap-northeast-1 region (Tokyo). Prompt-cache entries live in a Redis instance keyed by hash, with a1-hour TTL.

4.3Retention

We retain account, billing, and usage metadata for the duration of your active subscription plus 30 days after cancellation, after which we delete or anonymize personal information unless we are required by law to retain it longer.

5.Your Rights

You can:

  • Export - download all your data as JSON from Settings → Danger zone.
  • Delete - permanently delete your account and all data from the same page.
  • Correct - edit profile fields via Settings → Profile.
  • Access - write to privacy@omnizen.ai to request a copy of any information not exposed in the export.

We respond to written requests within 30 days.

6.Third-Party Processors

We use a small set of well-known sub-processors to operate the service. Each handles only the data needed for its specific function:

  • ClerkIdentity, authentication, and session management.
  • LiteLLMModel gateway routing requests to upstream AI providers.
  • RedisShort-lived cache for identical-prompt deduplication (1-hour TTL).
  • EPSLocal payment processing in Bangladesh (BDT, mobile wallets).
  • StripeCard payments and subscription billing outside Bangladesh.
  • Postgres on AWS EC2Primary application database (Tokyo region).
  • SentryError and crash reporting.
  • Upstream AI providersDeepSeek, Z.ai, Alibaba (Qwen), MiniMax, Moonshot (Kimi), OpenAI, Anthropic, Google - receive your prompts to fulfill the request.

7.Children's Privacy

omnizen is intended for users 13+. We do not knowingly collect personal information from children under 13. If we become aware that we have, we will delete it promptly.

8.International Transfers

omnizen routes prompts to upstream AI providers whose infrastructure may operate outside Bangladesh, including in China, the United States, and the European Union. By using the service, you consent to this routing. If your use case requires a specific jurisdiction, contact support before submitting sensitive content.

9.Changes to This Policy

We may update this policy from time to time. Material changes - such as adding a new processor or expanding what we collect - will be announced via email or in-product notice at least 30 days before they take effect.

10.Contact

Privacy questions, data requests, and complaints can be sent to privacy@omnizen.ai.

Privacy Policy - omnizen · Omnizen AI