PITHY

Privacy Policy

Last updated: January 2025

Overview

Pithy is a personal dashboard that connects to your existing services to help you stay informed. This policy explains what data we collect, how we use it, and your rights regarding your information.

Information We Collect

Account Information

When you create an account, we collect:

  • Email address (for authentication and account recovery)
  • Password (stored as a secure hash, never in plain text)

Connected Services

When you connect third-party services (Google, Microsoft, Slack, Mastodon, Bluesky, Readwise), we store:

  • OAuth tokens (encrypted at rest) to access your data on those services
  • API keys you provide (encrypted at rest)

We access data from these services only as needed to display information in your dashboard. This may include emails, calendar events, social media posts, and other content depending on which services you connect.

Dashboard Content

We store:

  • Your panel configurations (layout, settings, instructions)
  • Cached content from your connected services
  • Chat conversations with the AI assistant
  • Personal preferences and memories you choose to save

Usage Data

We track:

  • AI model usage (tokens consumed, for billing purposes)
  • API calls to external services (for cost tracking)

How We Use Your Information

  • To provide the service: Displaying your connected data in dashboard panels
  • To power AI features: Your queries and relevant context are sent to our AI provider (OpenRouter) to generate responses
  • To maintain your account: Authentication, password resets, and account management
  • To track usage: Monitoring API costs and token consumption

Data Security

  • OAuth tokens and API credentials are encrypted at rest using Fernet symmetric encryption
  • Passwords are hashed using Argon2, a modern secure hashing algorithm
  • All connections use HTTPS/TLS encryption in transit
  • Database access is restricted and authenticated

Third-Party Services

Pithy integrates with external services. When you connect these services:

  • We access your data according to the permissions you grant
  • Your data on those services remains subject to their privacy policies
  • We use OpenRouter as our AI provider; queries and context are processed by their systems

Data Retention

We retain your data for as long as your account is active. You can disconnect integrations at any time, which removes stored tokens for that service. To delete your account and all associated data, contact us at the address below.

Your Rights

You have the right to:

  • Access your personal data
  • Disconnect any integrated service
  • Delete your account
  • Export your data

Contact

For privacy-related questions or requests, contact us at: privacy@getpithy.ai

Terms of ServiceSign in