Privacy Policy

This policy describes how OpenIntelligence processes information. OpenIntelligence is designed to be local-first and privacy-preserving.

Last Updated

November 2025

1. Overview

OpenIntelligence processes documents and queries on-device by default. No document text or telemetry leaves the device unless the user explicitly enables a cloud pathway and provides consent.

2. Data Processing

Local-first default: Document ingestion, chunking, embedding generation, hybrid retrieval, and answer synthesis execute on-device by default.
Cloud fallbacks (optional): If the user enables Apple Private Cloud Compute or configures a third-party API (such as OpenAI), only the active query, retrieval metadata, and selected context snippets may be transmitted for response generation.
No third-party analytics: The app does not ship third-party analytics SDKs by default.

3. Model Pathways

On-Device Analysis

What leaves the device: Nothing.

User action required: None (default).

Apple Foundation Models / Apple Intelligence

What leaves the device: Nothing for on-device execution; for Private Cloud Compute, the query text and top-N context chunks may be transmitted.

User action required: Enable Private Cloud Compute and accept consent prompts.

Third-party APIs (e.g., OpenAI)

What leaves the device: The active query and selected context snippets needed to produce the response.

User action required: Provide API credentials and allow transmission via consent.

4. Keys and Credentials

Third-party credentials (for example, API keys) are provided by the user.
Keys are stored locally in the system Keychain.
OpenIntelligence does not embed developer keys in release builds.

5. Storage and Retention

Documents: Stored locally on the device. Users can delete individual documents and knowledge containers.
Vectors and embeddings: Stored per knowledge container. Deleting a container removes its embeddings and index data.
Cache: Hybrid retrieval caches are ephemeral and expire automatically.

6. User Controls

Consent prompts: Before the first cloud-bound request, the app presents a disclosure describing the destination and payload contents.
Revocation: Users can revoke permissions and remove credentials in Settings.
Deletion: Users can delete local content from within the app and by uninstalling the app.

7. Export Compliance

OpenIntelligence uses standard encryption (HTTPS/TLS) provided by the operating system.

8. Contact

For privacy inquiries, contact: privacy@openintelligence.app