Privacy Policy

1. Who We Are

This Privacy Policy is published by PraxisLoop AI LLC ("PraxisLoop AI," "we," "us," "our"), a Texas limited liability company with a registered business address at 1823 St Johns Ave, Allen, TX 75002, United States.

It covers all PraxisLoop AI LLC properties and products, including:

• praxisloop.ai — our marketing website
• FULCRUM — our engineering acceleration assessment and advisory service, delivered to engineering organizations under separate engagement agreements
• OmniCass — our AI-powered content creation and publishing platform for LinkedIn and X, hosted at omnicass.com

"Covered Products" in the rest of this policy means all of the above.

2. Information We Collect

2.1 Website Visitors (praxisloop.ai)

• Page views, referrer, and basic device information collected via standard server logs
• Information you voluntarily submit when contacting us (name, email, company, message content)

2.2 FULCRUM Engagements

• Contact information for engagement stakeholders (name, email, title, company)
• Engagement deliverables and materials you share with us during an active engagement (process documents, code samples, metrics, interview notes)
• Billing information necessary to process payments

2.3 OmniCass Account Information

• Name and email address (provided during signup, or via Google or LinkedIn OAuth)
• Hashed password (if you authenticate via email + password)
• Timezone preference

2.4 OmniCass Connected Account Data

• LinkedIn: OAuth access token, refresh token, your LinkedIn profile or Page identifier, and token expiry. Used solely to publish content you create, retrieve engagement metrics on your own posts and Pages, and (where you have authorized it) manage comments and reactions on your own posts.
• X (Twitter): OAuth access token, refresh token, X user ID, and token expiry. Used solely to publish content on your behalf.

We do not read your LinkedIn or X feed, direct messages, private connections, or any data beyond what is required to deliver the OmniCass features you have authorized.

2.5 OmniCass Content You Create

• Drafts, compositions, and published posts
• AI-generated research and content (stored so you can edit and re-generate)
• Writing style samples you provide for analysis
• AI-generated images
• Scheduling and queue preferences

2.6 OmniCass Usage Data

• Page views, clicks, and feature usage (collected via PostHog product analytics)
• Anonymized session recordings for user-experience improvement (PostHog; respects Do Not Track)
• AI usage metrics (token counts, generation counts) for quota enforcement
• Feedback submissions you make through the product

3. How We Use Your Information

• To deliver the Covered Products: respond to inquiries, complete FULCRUM engagements, and operate the OmniCass platform (including publishing content and surfacing engagement data on your authorized accounts)
• To improve our products: understand usage patterns, identify defects, and improve the user experience
• To enforce limits: track usage against quotas for the OmniCass free tier (and any future paid plans)
• To communicate: respond to feedback and engagement-related correspondence
• To meet legal obligations: retain records where required by law, and respond to lawful requests

We do not sell, rent, or share your personal information with third parties for marketing purposes.

4. Third-Party Services

We rely on the following third-party processors to operate the Covered Products. Each operates under its own privacy policy:

4.1 OmniCass platform

• Supabase — managed PostgreSQL database hosting for OmniCass account and content data
• Anthropic (Claude API) — AI text generation. Your prompts are transmitted to Anthropic to produce the requested output. See Anthropic Privacy Policy.
• OpenAI (gpt-image-1) — AI image generation. See OpenAI Privacy Policy.
• LinkedIn API — publishing posts and retrieving engagement statistics on your authorized profile or Pages
• X API — publishing posts on your authorized X account
• PostHog — product analytics and anonymized session recordings. See PostHog Privacy Policy.
• Google OAuth — authentication only; we receive your name and email

4.2 FULCRUM and website

• Standard email and document-collaboration services used to deliver engagements (e.g., Google Workspace)
• Standard infrastructure providers used to host praxisloop.ai
• Payment processors used solely to process engagement invoices

5. Data Storage and Security

• All OmniCass data is stored in a Supabase-hosted PostgreSQL database with Row Level Security enabled
• OAuth tokens are stored encrypted and used only to perform actions you explicitly request
• Passwords are hashed using bcrypt before storage
• All connections to our services use HTTPS/TLS encryption in transit
• API routes are protected by authentication checks and rate limiting
• OmniCass JWT sessions expire after 7 days
• FULCRUM engagement materials are stored on access-controlled cloud storage and shared only with the engagement team

6. Your Rights

You have the right to:

• Access the personal information we hold about you
• Correct inaccurate information
• Delete your OmniCass content (individual drafts and compositions can be deleted in the product at any time)
• Disconnect connected LinkedIn or X accounts at any time from OmniCass Settings; this revokes our ability to act on those accounts going forward
• Request account or engagement-record deletion by emailing us using the contact details below
• Opt out of analytics: PostHog respects the Do Not Track browser setting

Depending on where you reside, you may have additional rights under applicable privacy laws (for example, the GDPR in the European Economic Area, the UK GDPR, or the California Consumer Privacy Act). Contact us using the details below to exercise those rights.

7. Data Retention

• OmniCass account data is retained for as long as your account is active
• Deleted drafts and compositions are permanently removed from the database
• AI usage logs are retained for billing and quota enforcement
• OAuth tokens are invalidated upon disconnection
• FULCRUM engagement records are retained for the duration of the engagement plus a reasonable period afterward for legal, tax, and reference purposes
• Upon a verified account-deletion request, we permanently remove the associated data within 30 days, except where retention is required by law

8. Cookies

We use the following cookies and similar technologies:

• Session cookies — maintain authenticated sessions on OmniCass (essential; expire in 7 days)
• OAuth state cookies — temporary cookies for LinkedIn and X OAuth flows (expire in 10 minutes)
• PostHog cookies — anonymous analytics identifiers; can be disabled via Do Not Track

We do not use advertising or third-party tracking cookies.

9. Children's Privacy

The Covered Products are not intended for use by anyone under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us so we can delete it.

10. International Users

PraxisLoop AI LLC operates from the United States. If you access the Covered Products from outside the United States, you understand and consent to the transfer of your information to the United States, which may not provide the same level of data protection as your jurisdiction of residence.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be posted on this page with an updated "Last updated" date. Continued use of the Covered Products after changes are posted constitutes acceptance of the updated policy.

12. Contact Us

For privacy questions, deletion requests, or to exercise any of your rights, contact us:

Email: hello@praxisloop.ai
Mail: PraxisLoop AI LLC, 1823 St Johns Ave, Allen, TX 75002, United States
Website: praxisloop.ai