Privacy Policy

Last updated: February 2026· Version 5.0

Last Updated: February 2026

PAID BETA SERVICE NOTICE: Ossia is currently in paid beta. This policy includes specific provisions regarding data handling during the beta period. Please review Sections 3, 4, and 5 carefully.

1. Introduction

Ossia is a product of Bobenhouse Industries, LLC ("Ossia," "Bobenhouse," "we," "our," or "us"). Ossia is intended for business and professional use only. We respect your privacy and are committed to protecting your personal and business data. This privacy policy explains how we collect, use, and safeguard your information when you use the Ossia competitive intelligence platform and related services.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly to us, including:

  • Account information (name, email address)
  • Product and competitor data you input into the platform
  • Research queries and parameters you configure
  • Communication preferences
  • Feedback and correspondence
  • Survey respondent data (name, email, company, phone number, and survey responses) when you respond to a survey created by an Ossia user

2.2 Payment Information

When you purchase a subscription or report, payment is processed by Stripe, our third-party payment processor. We do not store your full credit card number, expiration date, or CVV on our servers. Stripe collects and processes your payment information in accordance with their privacy policy and PCI-DSS standards. We receive only a limited transaction record, including the last four digits of your card, billing address, and transaction status.

2.3 Information Collected Automatically

We automatically collect certain information when you use our services:

  • Usage data and analytics
  • Device and browser information
  • IP address and general location

3. Beta Period Data Handling

IMPORTANT: During the beta period, the following special conditions apply to your data:

3.1 Internal Access and Confidentiality

To improve, debug, and optimize the Ossia platform, Bobenhouse Industries, LLC and its employees, contractors, consultants, and service providers may access and review:

  • Data you submit to the platform
  • Data and outputs generated through your use of the platform
  • Your usage patterns and interactions with the service

This access is limited to purposes of service improvement, quality assurance, troubleshooting, and feature development. We treat your business information, research inputs, and outputs as confidential. We will under no circumstances sell, license, or otherwise commercially benefit from the data you upload into the platform. Your data is yours. Our access to it exists only to make the product better for you.

3.2 Data Persistence

While we take reasonable measures to protect your data, Ossia's infrastructure is still maturing and we cannot yet provide enterprise-grade data durability guarantees. Your data, including account information, saved research, and generated outputs, may be affected by:

  • Software bugs or technical issues resulting in unintended data loss
  • Platform updates and migrations
  • Changes to the platform architecture, including modification or retirement of features

We do not currently offer a guaranteed backup or disaster recovery SLA. We will make commercially reasonable efforts to notify you in advance of any planned changes that could affect your stored data. The platform provides export functionality for major work products, and we recommend regularly exporting and maintaining your own copies of any data you consider important.

3.3 Limited Privacy and Regulatory Protections

The beta service does not currently provide:

  • Compliance certifications (SOC 2, ISO 27001, etc.)
  • HIPAA compliance
  • Specific GDPR data processing agreements
  • Data residency guarantees
  • Industry-specific regulatory compliance

You are responsible for determining whether Ossia is suitable for your regulatory environment. If you require these protections, please contact us to discuss your requirements.

4. Third-Party Services

4.1 AI Model Providers

Part of Ossia's value is the curation and selection of AI models best suited for each function within the platform. We actively evaluate and may update the models powering different capabilities over time. Current providers include:

  • Anthropic (Claude)
  • Google (Gemini)
  • OpenAI (GPT models)

Regarding your data and AI training:

Our agreements with these AI providers specify that data submitted through our platform is not to be used for training their AI models. Your queries, inputs, and the outputs generated are processed solely to provide the service.

You should be aware that:

  • Your data is transmitted to and processed by these third-party services
  • Each provider has their own data handling and security practices
  • We select providers with strong data protection commitments, but cannot guarantee their compliance

4.2 Payment Processing

Payment transactions are processed by Stripe, which handles all credit card and payment data. Stripe is PCI-DSS compliant. We do not have access to or store your full payment credentials. For details on how Stripe handles your data, see Stripe's Privacy Policy.

4.3 Email Communications

We use Resend as our email service provider for transactional and service-related communications. Your email address and name may be shared with Resend solely for the purpose of delivering messages related to your Ossia account and services. We do not share your research data or platform activity with Resend.

5. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process your requests, transactions, and payments
  • Send you technical notices, billing communications, and support messages
  • Respond to your comments and questions
  • Analyze usage patterns to improve user experience
  • Debug issues and optimize platform performance
  • Develop new features based on usage patterns
  • Protect against fraudulent or unauthorized activity

6. Survey Respondent Data

6.1 Information Collected from Survey Respondents

If you respond to a survey created by an Ossia user, the following may apply:

For registered surveys, the survey creator may collect your name, email address, company name, and phone number, along with your survey responses. For anonymous surveys, only your survey responses are collected without identifying information.

6.2 How Respondent Data Is Used

The Ossia user who created the survey is the data controller for any information collected through their survey. They determine how your data is used, which may include contacting you based on your responses, incorporating your feedback into their research or business decisions, and other legitimate business purposes.

Ossia (Bobenhouse Industries, LLC) acts as a data processor and does not independently use survey respondent data for marketing, profiling, or any purpose beyond providing the survey platform functionality.

6.3 Your Rights as a Survey Respondent

If you have questions about how your survey responses or personal data will be used, please contact the organization or individual who sent you the survey. You may also contact us at hello@ossia.ai if you need help identifying the survey creator or wish to request deletion of your data from our platform.

6.4 Respondent Data Retention

Survey respondent data is retained on the Ossia platform for as long as the survey creator maintains an active account, or until the survey creator deletes the data. The beta period limitations described in Section 3.2 also apply to survey respondent data.

7. Data Sharing

We do not sell, license, or otherwise commercially benefit from your data. We may share your information with:

  • Service providers who assist in operating our platform (hosting, analytics, AI processing, payment processing, email delivery)
  • Professional advisors (lawyers, accountants) as necessary
  • Law enforcement when required by law or to protect rights and safety
  • Affiliated companies if Bobenhouse Industries, LLC is involved in a merger, acquisition, or sale of assets (you will be notified of any such change in ownership or control of your data)

During the beta period, authorized Bobenhouse Industries, LLC personnel (employees, contractors, consultants) may access your data as described in Section 3.1.

8. Data Security

We implement technical and organizational measures to protect your personal and business data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit
  • Access controls and authentication
  • Regular security assessments
  • Use of PCI-DSS compliant payment processing

Our security practices continue to mature as the platform grows. No method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security. If you become aware of any security issues, please contact us immediately at hello@ossia.ai.

Breach Notification: In the event of a security incident that affects your personal data, we will notify you as required by applicable law and provide information regarding the nature of the incident and any steps you can take to protect yourself.

9. Data Retention

We retain your data for as long as your account is active or as needed to provide services. The data persistence considerations described in Section 3.2 apply during the beta period.

If you cancel your subscription or close your account, we will make commercially reasonable efforts to retain your data for 30 days to allow for export, after which it may be deleted. We may retain certain information as required by law or for legitimate business purposes such as resolving disputes and enforcing our agreements.

10. Your Rights

Depending on your location, you may have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Object to processing of your data
  • Export your data in a portable format

The platform provides export functionality for major work products. For other data access or deletion requests, contact us at hello@ossia.ai.

11. Cookies

We use cookies and similar technologies to:

  • Maintain your session and authentication
  • Remember your preferences
  • Analyze how our services are used

You can control cookies through your browser settings, though this may affect service functionality.

12. Children's Privacy

Ossia is not intended for users under the age of 18. We do not knowingly collect personal information from children.

13. International Data Transfers

Your data may be transferred to and processed in countries other than your own, including the United States. By using our services, you consent to such transfers. Our third-party service providers (including AI model providers, Stripe, and Resend) may also process data in various jurisdictions subject to their own data protection practices.

14. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of material changes by:

  • Posting the new policy on this page
  • Updating the "Last Updated" date
  • Sending email notification for significant changes

For active subscribers, we will provide at least 15 days' notice before material changes take effect. Your continued use of the service after changes constitutes acceptance of the updated policy.

15. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us at:

Email: hello@ossia.ai

Bobenhouse Industries, LLC Chicago, IL, United States