We use cookies to enhance your experience and measure how the site performs. Choose "Essential Only" to disable analytics. Read our Privacy Policy.

    Legal

    Privacy Policy

    Last updated: 19 June 2026

    1. Who we are

    Odeus is operated by Robosapien Limited (“Odeus”, “we”, “us”), a company registered in England & Wales (Company No. 16079321). We are the data controller for personal data processed about visitors to this website and administrators of Odeus accounts. For customer content processed inside the product on behalf of our customers, we act as a data processor under our customer agreement.

    2. Information we collect

    • Account information — name, work email, organisation, and authentication identifiers when you sign up or are invited.
    • Content you provide — prompts, messages, uploaded files, connected knowledge, and the outputs generated in your workspace.
    • Usage data — log and device data, feature usage, and diagnostics used to operate and improve the service.
    • Cookies — see our cookie settings; we use essential cookies and, with your consent, analytics.

    3. How we use your information

    We use personal data to provide and secure the service, authenticate users, respond to support requests, send service communications, comply with legal obligations, and improve Odeus. We rely on the lawful bases of contract performance, legitimate interests, consent (where required), and legal obligation.

    4. AI processing and your data

    Odeus routes requests to leading AI model providers to generate responses. We do not use customer prompts, documents, knowledge, or outputs to train our own models, and we contractually require that customer content is not used by our model providers to train their models. Your content is kept private to your workspace.

    5. Sharing and sub-processors

    We share personal data only with vetted sub-processors that help us run the service (cloud hosting, AI model inference, error monitoring, analytics, and communications), each under a data-processing agreement, and where required by law. We do not sell personal data. A current list of sub-processors is available on request.

    6. Data retention

    We retain personal data for as long as your account is active or as needed to provide the service, then delete or anonymise it within a reasonable period unless a longer retention is required by law. You can delete content at any time; deletion is propagated across primary and backup storage within 30 days.

    7. Security

    We protect data with encryption in transit (TLS) and at rest, role-based access controls, workspace isolation, and audit logging. No method of transmission or storage is completely secure, but we work to protect your data and to notify you of material incidents as required by law.

    8. International transfers

    Where personal data is transferred outside the UK/EEA, we rely on appropriate safeguards such as the UK International Data Transfer Agreement or the EU Standard Contractual Clauses.

    9. Your rights

    Subject to applicable law, you have rights to access, correct, delete, restrict, and port your personal data, and to object to certain processing. To exercise these rights, contact us using the details below. You may also lodge a complaint with the UK Information Commissioner’s Office (ICO) or your local supervisory authority.

    10. Changes to this policy

    We may update this policy from time to time. Material changes will be posted here with an updated date.

    11. Contact us

    Questions about this policy or your data? Email [email protected].