Omnisphere Logo
Try Omnium ✨
Data ProtectionOmnisphere

Privacy Policy

Last Updated: May 19, 2026

1. INTRODUCTION

Welcome to the Omnium Privacy Policy. This policy describes how Omnium – an AI platform developed by Avrioc Technology LLC (a UAE‑registered company) – collects, uses, and protects information. It is intended for all users of Omnium, including individual users and enterprise customers. We are committed to safeguarding your privacy and ensuring compliance with applicable data‑protection laws, including the UAE Federal Decree‑Law No. 45 of 2021 on the Protection of Personal Data (PDPL), among others. By using Omnium’s services, you agree to the practices described in this Privacy Policy.

Scope: This policy covers all AI functionalities provided by the Omnium platform – including data analysis tools, natural language processing (NLP) features, chatbot services, and image‑processing capabilities – for both enterprise and individual use. It explains what information we collect, how we use and share it, the legal bases for processing, and your rights regarding your personal data. Importantly, Omnium is designed not to handle sensitive personal data (such as health records, biometric identifiers, financial information, or other highly confidential data), and we do not intentionally collect or process such information. We ask that you do not provide sensitive personal data when using our platform, as described further below.

2. INFORMATION WE COLLECT

2.1 Overview

We collect information necessary to operate our platform and provide our services. This includes personal data you provide to us, data generated from your use of Omnium, and information collected through cookies or similar technologies. Below we outline the categories of information we collect and what we do not collect.

2.2 Personal Data You Provide

When you register an account or contact us, we may collect certain personal details from you. This “Personal Data” typically includes:

  • Identity and Contact Information: e.g. your name, email address, phone number, job title, and company/organization (for enterprise users).
  • Account Credentials: e.g. username, password, and other authentication information for accessing Omnium.
  • Profile Information: any preferences, profile photo, or other details you choose to add to your user profile.
  • Communication Records: if you contact support or send us inquiries, we will collect the information you provide (such as email correspondence or chat messages) to address your request.

We limit the personal data we ask for to the minimum needed to create and manage your account or provide support. Omnium does not require you to provide any sensitive personal data (e.g. information about your health, genetics, biometrics, finances, religious beliefs, etc.), and we will not knowingly collect such data. We do not collect government‑issued identifiers, financial account numbers, health records, or biometric identifiers from you, as our services are not intended for handling such sensitive information. If we become aware that sensitive data has been inadvertently collected, we will delete it. (In certain jurisdictions, categories like health, biometric, ethnic origin, and sexual orientation are considered “sensitive personal data” and receive special protection. Omnium’s policy is to avoid processing any such data.)

2.3 Content and Data You Submit (User‑Provided Content)

  1. General Use – Omnium is an AI platform that allows you to input data for analysis, ask questions to an AI chatbot, process text via NLP, or upload images for analysis. All content and data that you (or your organization) submit to our platform (e.g. text prompts, documents, datasets, images, chat messages) is treated as your data. We collect and process this user‑provided content only to operate the AI functionalities and deliver results back to you. In other words, we use your input data to generate the AI outputs (analysis, answers, or image results) that you request.

  2. Data‑Analysis Tools – If you use our data analysis tools, the data sets or information you upload will be processed to generate analysis or insights for you.

  3. NLP / Chatbot – If you interact with our NLP or chatbot features (for example, asking Omnium’s AI a question or having a conversation), the text of your queries and the AI’s responses may be temporarily stored so that the conversation can function and be shown to you.

  4. Image‑Processing – If you use our image processing feature, any images you upload will be analyzed as requested (e.g. for object recognition or other AI‑derived information) and may be stored temporarily for processing. The Service is not intended to perform biometric identification or uniquely identify individuals from images unless explicitly stated as a feature with appropriate notice and legal basis.

  5. User Ownership – You retain ownership of all content and personal data you provide in using Omnium’s services. Providing your data to Omnium does not change your rights to that data. As between you and Omnium, you maintain all rights to the inputs (data, text, images, etc. you submit) and the outputs generated for you. We will never claim ownership over your personal data or uploaded content. We only use and process your content as necessary to perform the services you request, to comply with applicable law, or to enforce our policies.

  6. No AI Training on Your Data – We do not use the content you submit to train our underlying AI models or to improve our algorithms without your explicit permission. All AI processing on your data is performed for your use of the service, and your data remains isolated to your account/workspace. In an enterprise context, your business data and any inputs/outputs are not used by Omnium for model training or product development, unless you have explicitly opted‑in to such use. By default, any text, images, or other data you provide are used only to generate the results you requested and to maintain the functionality of the service. (The only exceptions would be if you choose to participate in feedback programs or analytics that help improve our services, in which case we would obtain your consent separately.)

2.4 Usage Data (Automatically Collected)

  • Device and Log Information: When you use Omnium, our servers automatically record details such as your device type, operating system, browser type, IP address, device identifiers, and the dates/times of access. We may also log actions you take on the platform (e.g. features used, pages viewed, clicks, errors).
  • Analytics Data: We use analytics tools to collect information about how users navigate and use our website/app. This can include metrics like page response times, usage frequency of certain AI features, and crash reports. This data is generally aggregated and does not directly identify individuals. If any analytics data is linked to you, we treat it as personal data.
  • Cookies and Similar Technologies: We use cookies, beacons, and similar tracking technologies to collect information about your usage and preferences. Cookies help us remember your settings, keep you logged in, and analyze site traffic. (See Section 5 for details.)
  • Purpose: Usage data is typically non‑identifiable on its own, but if it can be linked to you (e.g. IP address or device ID that could be considered personal data in some jurisdictions), we treat it as personal data and protect it accordingly. We use this information to maintain security, prevent fraud, debug and fix errors, and analyze trends in usage.

2.5 Information from Third Parties

  1. Integrations: Generally, we collect data directly from you. If you choose to integrate Omnium with third‑party services (e.g. an enterprise customer connects Omnium to their cloud storage or messaging platforms via our integrations or API), we may receive certain information from those third parties as needed to perform the integration. For instance, if you link a third‑party account or data source to Omnium, we might receive your profile information or content from that source after you authorize the connection. We will apply the same privacy protections to any such information.

  2. Enterprise Billing Info: We may also receive basic account or billing information about you from an enterprise customer (your employer or organization) if they register you for an Omnium enterprise account. In such cases, the organization might provide your name, work email, and role so we can create your user profile under their enterprise subscription.

Note: Omnium does not knowingly collect personal information from children. Our services are intended for business and adult users. If you are under the age of 18 (or the minimum age required in your jurisdiction), please do not use Omnium or provide any personal data. If we learn that we have inadvertently collected personal data from a child, we will delete it.

3. HOW WE USE YOUR INFORMATION

3.1 Purposes

We use the collected information for the following purposes, all in line with operating a safe and effective AI platform:

  1. To Provide and Improve the Service – We process your personal data and content to operate the Omnium platform’s features. This includes using your inputs to generate AI outputs (data analysis results, chatbot answers, image recognition outcomes, etc.), maintaining your account, and customizing your user experience. We may also use data (including usage patterns and feedback) to improve and refine our AI models and services – but only in aggregate or anonymized form, or with your explicit consent if it involves your personal data.

  2. Account Management and Customer Support – We use your contact and account information to administer your account, verify your identity when you log in, and communicate with you about your use of Omnium. If you reach out for support, we will use your information to respond to your questions, resolve issues, and provide customer care.

  3. Security and Fraud Prevention – Information (especially usage and log data) is used to monitor and protect the security of our platform, users, and systems. We may analyze logs and user activities to detect unauthorized access, prevent abuse (such as misuse of the AI features, spam, or malicious activities), and enforce our terms of service. This is essential to keep our services safe for everyone.

  4. Analytics and Platform Development – We use aggregated usage data, cookies, and analytics tools to understand how our platform is performing and how users interact with it. This helps us troubleshoot problems, and develop new features or enhancements. For example, usage data might inform us which AI functionalities are most popular or if any feature is causing frequent errors, allowing us to focus our improvements. We ensure that analytics data is de‑identified or aggregated whenever possible.

  5. Communications and Updates – We may use your contact information to send important notices, such as service updates, security alerts, and changes to this Privacy Policy or other terms. We may also send marketing or promotional communications about new features or offerings, but only if you have given us consent to receive marketing (where required by law). You can opt out of marketing emails at any time, and we will not spam you.

  6. Legal Compliance and Protection – In certain cases, we need to process personal data to comply with legal obligations – for example, keeping records for financial reporting, complying with lawful requests from government authorities, or fulfilling obligations under data protection laws. We may also process data as needed to establish or defend legal claims, investigate violations of our terms, or protect the rights, property, or safety of Omnium, our users, or the public.

  7. Limitation of Use – We will only use your personal information for the purposes described above or as otherwise disclosed at the time of collection. If we need to use your data for a new purpose that is incompatible with the purposes above, we will seek your consent or provide you with an appropriate notice, unless otherwise required or permitted by law.

  8. No Selling of Personal Data – We do not sell your personal information to third parties for their own commercial use. “Selling” (as defined by CCPA and similar laws) means exchanging personal data for monetary or other valuable consideration. Omnium does not engage in selling personal data, and we do not share your information with third parties for them to market their products to you without your consent.

  9. No Sensitive Data Processing – As stated, we avoid collecting sensitive personal data. Therefore, we do not use your data to infer sensitive characteristics (such as health, race, religion, etc.) and do not engage in any processing that would be considered “high risk” sensitive processing under laws like PDPL or GDPR without proper legal basis and safeguards. In fact, our platform is built such that we do not request or utilize sensitive data at all in providing our AI services, to protect your privacy.

4. LEGAL BASIS FOR PROCESSING PERSONAL DATA

We process personal data only when we have a valid legal basis to do so, in accordance with applicable data protection laws. This section explains the legal grounds we rely on for processing your information, particularly for users in jurisdictions like the European Economic Area (EEA), United Kingdom, and United Arab Emirates where laws require a “lawful basis” for processing. For users in other regions (e.g., the United States), we ensure that our practices align with your rights and expectations under relevant laws such as the CCPA.

  1. Consent – In cases where we ask for your consent, we will only process your personal data for the specific purpose you agreed to (e.g., marketing emails, feedback programs). You have the right to withdraw consent at any time.
  2. Contractual Necessity – Processing is necessary to perform our contract with you (provide the Omnium services you signed up for). This includes authentication, generating AI outputs, and account management.
  3. Legitimate Interests – We may process your data for legitimate interests such as security, fraud prevention, service improvement, and understanding usage patterns, provided this does not override your rights.
  4. Legal Obligation – Processing required to comply with legal duties (tax, accounting, regulatory requests, court orders, etc.).
  5. Public Interest / Vital Interests – Rarely applicable; may be used to protect life or public health in emergencies.
  6. CCPA (California Residents) – Processing is based on “business purpose.” We do not sell personal information, so the opt‑out right is not applicable, but we still mention it for completeness.
  7. UAE PDPL Compliance – We obtain consent where needed, rely on contractual necessity or legitimate interests otherwise, and provide a privacy notice as required.

If you have any questions about the legal basis on which we collect and use your personal data, please contact legal@omnisphere.ai.

5. COOKIES AND TRACKING TECHNOLOGIES

  1. What Are Cookies?
    Cookies are small text files placed on your device (computer or mobile) when you visit a website or use an app. They allow the site to remember your actions or preferences over time. Similar technologies include web beacons (pixel tags), local storage, and scripts that track usage. On our platform, some cookies are set by us (first‑party cookies) and some might be set by third‑party services that we use (third‑party cookies, such as analytics providers).

  2. How We Use Cookies

    • Essential Cookies: Required for the website or app to function properly (e.g., stay logged in, remember language/region preferences). These are active by default and do not require consent.
    • Analytics and Performance Cookies: Collect information about how users interact with our platform, which pages or features are most popular, and whether users encounter errors. This helps us improve the site’s performance and user experience. We may use Google Analytics or a similar tool; the data is typically aggregated and does not directly identify you. Where required by law, we will ask for your consent before setting analytics cookies.
    • Functionality Cookies: Remember choices you make (e.g., preferred theme) to provide a more personalized experience. While not strictly essential, they enhance functionality. You may have the option to disable them.
    • Advertising or Tracking Cookies: Currently not used. Omnium does not serve third‑party ads or use advertising cookies. If this changes, we will update the policy and obtain any necessary opt‑ins.

  3. Cookie Consent and Control

    • On first visit, you may see a cookie notice/banner where required. You can accept or reject non‑essential cookies.
    • Rejecting certain cookies may affect site functionality (e.g., preferences may not be remembered).
    • Most browsers allow you to manage cookies via settings (block, delete, or receive alerts). Disabling all cookies may prevent login or other core features.

  4. Other Tracking Technologies

    • Web Beacons: Small graphics with unique identifiers in HTML emails to detect opens or clicks. You can disable image loading in your email client to block this tracking.

6. DATA SHARING AND DISCLOSURE

We understand the importance of keeping your personal data confidential. Omnium will not share, sell, or rent your personal information to third parties for their own marketing purposes. However, in order to provide our services and run our business, there are certain circumstances where we may disclose information to third parties, as detailed below. In all cases, we only share the minimum information necessary and ensure appropriate safeguards and contracts are in place to protect your data.

Category Description
Service Providers (Processors) Trusted third‑party companies (cloud hosts, analytics services, email providers, support software, etc.) that process personal data on our behalf. They are bound by Data Processing Agreements and may only use your data to provide the contracted service.
Integration Partners & Third‑Party API Services When you enable integrations, we share data with the third‑party as necessary at your direction (e.g., exporting a report to Slack). You must authorize the connection.
Enterprise Accounts – Sharing Within an Organization Admin users of an enterprise may have access to data about your use of Omnium, depending on organizational settings.
Legal Requirements and Safety Disclosure to courts, law‑enforcement, regulators, or other authorities when required by law, to enforce our terms, to investigate security/fraud issues, or to protect rights and safety.
Business Transfers In a merger, acquisition, or sale of assets, personal data may be transferred to the acquiring entity, which must honor this policy or obtain consent for material changes.
Aggregated or Anonymized Information Data that has been aggregated or irreversibly anonymized (no longer personal data) may be shared publicly or with partners. No individual can be identified from this data.

We do not sell personal data to data brokers or advertisers, and we do not share it for direct marketing unless you consent.

If you would like more details about the third parties we use or the specific information disclosed, you can contact us and we will provide a list of our current subprocessors or integration partners upon request.

7. DATA RETENTION AND DELETION

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including providing the services, legitimate business or legal purposes, and regulatory obligations.

7.1 General Retention Periods

  • Account Information: Kept while the account is active. Deleted or anonymized after account closure, unless required for legal reasons.
  • User‑Provided Content: Stored to enable platform use. Deleting specific content removes it from the active database; residual copies may remain in backups for a short period. Full account deletion removes all content.
  • Usage Data: Typically retained for 2 years, unless needed longer for security investigations or legal proceedings. Aggregate non‑personal data may be retained longer.
  • Communications: Support emails and feedback are retained for record‑keeping and training, unless you request deletion.
  • Cookies: Session cookies expire at browser close; persistent cookies follow their set expiration (e.g., 6 months).

7.2 Deletion of Data

You have the right to request deletion of your personal data. You may delete certain information yourself (profile updates, content removal). For data you cannot delete, send a verified request to privacy@omnisphere.ai. We will erase your data from active systems and instruct processors to do the same, except where retention is required by law. We will also inform any third parties with whom we have shared your data, to the extent required by law.

7.3 Account Deactivation vs. Deletion

  • Deactivation: Pauses the account; data remains but is not actively used.
  • Deletion: Removes your profile and personal data from active use. Full removal from backups may take a short time; minimal metadata (e.g., hashed email with “deleted on [date]”) may be retained to prevent accidental re‑creation.

7.4 Retention for AI Model Outputs

Saved AI outputs (analysis results, chatbot transcripts) are treated as your content. If not saved, transient outputs are typically not stored beyond the session and are cleared from memory/cache promptly.

8. INTERNATIONAL DATA TRANSFERS

Omnium is a global platform, and the data we collect may be transferred to or stored on servers in various countries. Avrioc Technology LLC is based in the United Arab Emirates, but we utilize cloud infrastructure that could be outside the UAE (e.g., EU or United States data centers). Regardless of location, we protect your data and comply with cross‑border transfer requirements.

  • Transfers from UAE: May rely on adequacy decisions, Standard Contractual Clauses (SCCs), or explicit consent when transferring to non‑adequate jurisdictions.
  • Transfers from EEA/UK: Use EU‑approved SCCs, adequacy decisions, or other GDPR‑allowed mechanisms.
  • Transfers to the United States or Other Countries: Safeguarded by contracts, SCCs, or consent where required.

You may request details of the safeguards (e.g., a copy of SCCs) by contacting us.

9. DATA SECURITY MEASURES

Omnium takes data security very seriously. We implement a variety of technical, administrative, and organizational security measures to protect your personal information.

  1. Encryption: All personal data is encrypted in transit (HTTPS/TLS) and at rest (AES‑256 or equivalent).
  2. Access Controls: Strict least‑privilege access, multi‑factor authentication for staff, and detailed audit logs of all accesses.
  3. Organizational Policies: Staff confidentiality agreements, regular privacy and security training, and an appointed Data Protection Officer.
  4. Network & Application Security: Firewalls, intrusion detection/prevention systems, continuous monitoring, regular patching, and third‑party penetration testing.
  5. Data Pseudonymization: Where possible (analytics, testing) we replace personal identifiers with pseudonyms or use synthetic data.
  6. Backups & Resilience: Encrypted backups, disaster‑recovery and business‑continuity plans, and secure destruction of obsolete copies.
  7. Third‑Party Security: Vetting of service providers, DPAs, and security‑certification requirements.
  8. Continuous Improvement: Ongoing risk assessments, incident‑response plan, and a bug‑bounty/responsible‑disclosure program.

No system can be 100 % secure; we will notify you and relevant authorities of any breach as required by law (e.g., PDPL, GDPR).

10. YOUR RIGHTS AND CHOICES

Depending on your jurisdiction (GDPR, PDPL, CCPA, etc.), you have a number of legal rights regarding the personal information we hold about you:

  • Right to Access (Right to Know)
  • Right to Rectification (Correction)
  • Right to Deletion (Right to Erasure)
  • Right to Data Portability
  • Right to Restrict or Object to Processing
  • Right to Withdraw Consent
  • Right to Opt‑Out of Sale or Sharing (CCPA/CPRA)
  • Right to Non‑Discrimination
  • Right to Complain to a supervisory authority

How to Exercise These Rights
Contact privacy@omnisphere.ai with a clear description of your request. We may require verification of your identity to protect your data. Responses will be provided within statutory timeframes (typically 30 days for GDPR/PDPL, 45 days for CCPA, with possible extensions).

11. ENTERPRISE ACCOUNT PROVISIONS

  1. Controller vs. Processor: The enterprise is usually the data controller; Omnium acts as a processor, handling data only on the enterprise’s instructions.
  2. Data Ownership: The enterprise retains ownership and control over its data.
  3. Administrative Access: Enterprise admins may view usage reports or content depending on settings.
  4. Separate Agreements: Master Service Agreements, Data Processing Addendums, etc., may supersede this policy for enterprise customers.
  5. End‑of‑Contract Handling: Upon contract termination, the enterprise can request deletion or export of all data. We will securely erase or export it in line with our retention policy.

12. UPDATES TO THIS POLICY

  1. Posting of Revised Policy: Updated versions will be posted on our website (and in‑app) with a new “Last Updated” date.
  2. Notification of Material Changes: Significant changes will be communicated via email, banner, or pop‑up, and may require your consent.
  3. Version History: Prior versions are archived and can be provided on request.
  4. Effective Date: Changes are effective upon posting unless otherwise stated. If you continue to use Omnium after a new policy takes effect, it indicates your acceptance (to the extent permitted by law). If you disagree, you may stop using the service and request deletion of your data.

13. CONTACT INFORMATION

If you have any questions, concerns, or requests regarding this Privacy Policy or how your personal data is handled, please contact us:

Avrioc Technology LLC (Omnium) – Data Protection Team