Privacy Policy
Last updated: April 23, 2026
OpenResponses runs entirely on your device until you decide to contact an external service. The app's primary network traffic is directly to OpenAI when you send a live request, plus any optional service integrations (such as Notion) that you explicitly authorize.
1. What Stays on Your Device
- API Credentials: Your OpenAI API key and any optional integration tokens are saved locally in the iOS Keychain. They never leave your device except to authenticate directly with the corresponding service you configured.
- Conversation Data: Chat message history, system prompts, and tool execution results are stored locally on your device. You can delete any individual conversation thread or uninstall the app to erase this data.
- File Processing: Attachments are processed in memory, optionally converted on-device, and sent directly to the selected service. The app does not persist extra file copies.
2. In-App Permission & Disclosures
- Before making your first live AI request, OpenResponses shows an in-app disclosure detailing what data is sent to OpenAI and asks for your explicit permission.
- No request data is transmitted to OpenAI until you tap **Allow & Send**.
- The "Explore Demo" feature operates fully offline and makes no external API calls.
3. Data Transmitted on User Request
- OpenAI Responses API: User prompts, parameters, optional attachments, and request-related tool inputs/outputs are sent directly to OpenAI to generate a reply. This data is processed under OpenAI's terms.
- Computer Use Bridge (Optional): When you approve a browser automation step, the app streams the approved action, screen capture, and instructions to your trusted computer-use bridge server running on your local network.
- Connected Integrations: If you enable integrations like Notion, Slack, or GitHub, the assistant forwards only the prompts and parameters required for the specific action you initiated. Those services apply their own privacy policies.
4. Requested Device Permissions
- Photo Library & Files: Allows you to attach screenshots, PDFs, documents, and other files to chat sessions.
- Calendars, Reminders, & Contacts: Enables the assistant to create or modify items, only when you explicitly authorize the action.
- Local Network: Required to connect to the computer-use automation bridge running on your network. No other scanning occurs.
- Microphone & Location: The app does **not** request microphone, speech recognition, or location access in the current release.
5. Computer Use Safety Guardrails
- Every automation step (navigation, clicks, keystrokes) is presented in a verification UI for user approval before execution.
- Declining any step cancels the automation chain immediately. The app never runs background commands without an active, visible audit trail in chat.
6. Analytics & Crash Data
- Usage Metrics: Optional, anonymous usage metrics are turned **off** by default and can be toggled in Settings. They never include conversation content or credentials.
- Diagnostics: Crash reports come from Apple's opt-in developer feedback system and do not contain chat transcripts or API keys.
7. Retention & Deletion
- You can remove credentials or disconnect integrations in Settings at any time.
- Delete individual messages, clear all conversation history, or reset first-send consent in Settings.
- Uninstalling the app deletes all sandboxed files, database conversations, and Keychain items.
8. Contact
If you have privacy questions, file an issue at the GitHub Issues Tracker or email the developer at gunnarguy@me.com.