Privacy

Your data is yours.

Last updated: 29 May 2026

BYO key Local-first No training Open source

Olwen is built on a principle most AI products quietly violate: your data is not the price of admission. Here's exactly what that means in practice.

Where your data lives

When you run Olwen, every credential (LLM keys, Gmail OAuth tokens, IMAP passwords, GitHub PATs, Strava tokens) is stored encrypted at rest in your own PostgreSQL database using symmetric encryption with a key you control. If you self-host, that database is on a machine you own. If you use the hosted private beta, it's in an isolated tenant row.

What we send to LLM providers

You connect your own Claude, Gemini, or Groq key. The prompts and your data go from Olwen to that provider directly using your key. We do not proxy through a middleman service we control. Your provider's privacy policy applies to that traffic.

We do not log prompts. We do not retain your inbox contents, calendar events, code, or terminal output in any analytics system, full stop.

Telemetry

The hosted version uses standard web server access logs (IP, user agent, path, timestamp) retained for 30 days for security and abuse-prevention purposes. There is no third-party analytics tag on the product. The marketing site (olwenai.com) does not run any analytics either — the source is public, check for yourself.

Email OTP

Account signup uses an email one-time code. The email itself is sent via Resend (or whatever provider you configure if self-hosting). Resend sees the recipient email address and the 6-digit code; the code expires in 10 minutes.

Third-party services you opt into

• Google OAuth — only the scopes you grant (calendar read, gmail modify). Tokens are encrypted before being stored.
• GitHub OAuth or PAT — only the scopes you grant.
• Strava OAuth — read-only activity scope.
• News RSS feeds — direct fetches from the publisher, no intermediate aggregator.
• Brave Search API (optional) — only if you install a search skill, only your query.

Training

We do not train any model on your data. We do not have a model to train. Olwen forwards prompts to your chosen LLM provider with your key — the training policy of that provider applies. (Anthropic, Google, and Groq all have explicit opt-outs / no-training defaults for API traffic; check their docs.)

Deletion

Delete your account in Settings and we purge every row associated with you within 7 days, including encrypted credentials and message memory. If you self-host, this is a single DROP DATABASE olwen.

Children

Olwen is not designed for or marketed to children under 13.

Changes to this policy

Any material change will be announced in the product, in the GitHub repo (so it's in git history), and on the public website. The current version is always at olwenai.com/privacy.

Contact

Privacy questions, deletion requests, or anything else: [email protected].

No tracking · No training · No surprises