AJA-OSLEGAL FOUNDATION
Back to Executive Portal
Privacy Policy // Last Updated: July 10, 2026

Privacy Policy

At AJA-OS, we prioritize the protection and security of your business and personal information. This Privacy Policy outlines the types of data collected, stored, and processed by the AJA-OS platform, hosted at https://os.ajasarahmarketer.com/, and governs your relationship with the Service.


1. Introduction

AJA-OS is an AI-powered Business Operating System designed and provided by AJA Sarah Information Technology Consultancy ("we", "us", or "our"). The platform facilitates corporate structure mapping, founder dependency analysis, operational roadmapping, and diagnostics for business growth.

By accessing or using AJA-OS, you consent to the data collection and processing policies outlined in this document.

2. Information We Collect

AJA-OS collects information necessary to authenticate users, generate business intelligence models, and maintain operational context. This information is categorized as follows:

  • Identity and Authentication Data: Data retrieved during sign-in to establish your account credentials.
  • Operational Data: Detailed structures, dependencies, KPIs, and systems details inputs provided during diagnostic interactions.
  • Interaction Data: Transcripts of text dialogue exchanged with the AI core.

3. Google Sign-In Information

To provide secure, enterprise-grade access, AJA-OS integrates Google OAuth (Sign-In). When you authenticate via Google, we access and store:

  • Your primary Google email address (used as your unique username).
  • Your full name (used to personalize the workspace dashboard).
  • Your profile photo URL (used to display your avatar in the navigation bar).

We do not access or store your Google password or any other details from your Google Account.

4. Conversation History

AJA-OS collects and stores logs of your diagnostic sessions with our AI Operations Lead. These chat transcripts are saved in our database to ensure that the session context is preserved between logins, allowing you to resume your diagnostics right where you left off.

5. Business Digital Twin Data

During operational mapping, AJA-OS extracts parameters to build a "Business Digital Twin". This dataset contains parameters related to your:

  • Business profile (company name, stage, target audience, vertical).
  • Operating models (sales, marketing, hr, technology workflows).
  • Systems (CRM pipelines, internal communication structures, project management tools).
  • Core constraints (manual workload bottlenecks, founder dependencies, delayed feedback loops).

This Digital Twin is updated dynamically during your conversation and saved under your organization profile.

6. Executive Reports

At the conclusion of the diagnostic states, the Service generates 90-Day roadmaps, systems diagnostics reports, and task schedules. These reports are compiled, formatted, and stored securely under your account so they can be reviewed and revised at your convenience.

7. Uploaded Business Information

If you choose to upload files or insert business documents into AJA-OS to enhance the diagnostic context, we collect and store these files. All uploaded documents are parsed solely to supply contextual relevance to the AI model during your active session.

8. Analytics Usage

We run analytics through Firebase Analytics to measure page engagement, session durations, and user conversion rates. Firebase Analytics collects details such as device category, location country, and browser type. This data is aggregated and used solely to identify platform performance bottlenecks.

9. Cookies and Local Storage

AJA-OS utilizes standard browser cookies and local storage tokens to maintain authenticated state. These security tokens are required for Firebase Authentication to maintain your session active. We do not use tracking or advertising cookies.

10. How Information is Used

We use the information we collect for the following specific purposes:

  • To build your organization workspace and authorize system access.
  • To save and query your Business Digital Twin and conversation logs.
  • To feed operational context to the AI core for business analysis.
  • To evaluate platform engagement and resolve frontend/backend errors.

Your data is strictly used to deliver the AJA-OS software experience. We do not engage in profiling, list trading, or third-party advertising.

11. Data Retention

We retain your account details, transcripts, and Business Twin data as long as your account remains active. You can request complete erasure of your data at any time. In the event of account termination, all associated personal and operational documents will be permanently purged from our active databases.

12. Security Measures

We host the Service on Firebase Hosting and store all files and databases in Firebase Firestore. We implement strict Firebase Security Rules that validate requests on the server side, ensuring that only authenticated users can read or write data associated with their own organization (`org_[user_uid]`). Communication between your browser and our servers is secured via HTTPS/TLS encryption.

13. Third-Party Services

AJA-OS interfaces with the following subprocessors to deliver the platform:

SubprocessorPurposePrivacy Policy Link
Google Cloud (Vertex AI)AI model executionView
Google FirebaseAuth, DB, & Web HostingView

Google API Limited Use: Our integration with Google OAuth adheres strictly to the Google API Services User Data Policy. We do not use, transfer, or share Google user data for advertising, marketing, or general research purposes.

14. User Rights

You retain complete control over your business parameters. You have the right to:

  • Request access to all operational data and chat logs stored under your organization.
  • Correct inaccuracies in your profile parameters.
  • Request complete account closure and permanent deletion of your data.

15. Account Deletion

You may trigger account and data deletion at any time by sending a request from your registered email address to dpo@ajasarahmarketer.com. Upon receiving your email, we will terminate your Google OAuth token connection in our system, purge your Firestore documents (`organizations/org_[uid]`), and delete all system backups within 30 days.

16. Contact Information

For data protection questions, compliance concerns, or deletion requests, please contact our Data Protection Officer: