Privacy Policy

Last updated: March 14, 2026

1. Introduction

ChiefOS ("we," "us," or "our") operates an AI executive assistant service delivered via WhatsApp. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our service at wrapmysocials.com.

By using ChiefOS, you agree to the collection and use of information as described in this policy. If you do not agree, please do not use our service.

2. Data We Collect

ChiefOS connects to your Google Workspace account via Google's official OAuth 2.0 flow. We never store your Google password. You can revoke access at any time from your Google account settings.

We access the following data through OAuth:

  • Google Calendar — event titles, times, attendees, and descriptions to prepare your daily briefings, detect scheduling conflicts, and manage your calendar.
  • Gmail — email metadata (sender, subject, date) and message content to triage your inbox, surface priority messages, and draft responses for your approval.
  • Google Drive — file names and contents (when relevant) to pull meeting-related documents and surface context for your briefings.

We also collect:

  • Account information — your name, email address, and preferences provided during onboarding.
  • WhatsApp messages — messages you send to and receive from ChiefOS to deliver the assistant experience.
  • Usage data — interaction patterns and feature usage to improve the service.

3. How We Use Your Data

Your data is used exclusively to deliver the ChiefOS service:

  • Generating your morning briefing, afternoon check-in, and evening review.
  • Detecting calendar conflicts and preparing meeting briefs.
  • Triaging your inbox and drafting email responses for your approval.
  • Tracking tasks and follow-ups you commit to.
  • Improving the accuracy and relevance of your briefings.

We never sell your data. We do not use your data to train AI models. We do not share your data with advertisers.

4. Data Storage and Security

Your data is stored in Firebase Firestore with encryption at rest and in transit (TLS 1.2+). We implement the following security measures:

  • All API communications are encrypted using HTTPS/TLS.
  • OAuth tokens are stored securely and never exposed to client-side code.
  • Access to production systems is restricted to authorized personnel only.
  • Every action taken by ChiefOS on your behalf is logged in an audit trail.
  • Rate limiting and anomaly detection protect against unauthorized access.

5. Data Retention

We retain your data for as long as your account is active. If you cancel your subscription:

  • Your personal data and conversation history are permanently deleted within 30 days of cancellation.
  • Google OAuth access is revoked immediately upon cancellation.
  • Anonymized, aggregated usage statistics may be retained for service improvement.

6. Third-Party Services

ChiefOS uses the following third-party services to deliver the product:

  • OpenRouter — routes requests to large language models (LLMs) that power ChiefOS's intelligence. Calendar and email data may be sent to LLM providers for processing. OpenRouter does not retain this data beyond the request.
  • Dodo Payments — processes subscription payments. We do not store your credit card details. Dodo Payments handles all payment data in compliance with PCI-DSS standards.
  • Firebase (Google Cloud) — provides database storage and authentication infrastructure.
  • WhatsApp (Meta) — message delivery platform. Messages are subject to WhatsApp's own privacy policy.
  • Cloudflare R2 — file storage for documents and attachments.

7. Your Rights

You have the right to:

  • Access — request a copy of all personal data we hold about you.
  • Export — receive your data in a portable, machine-readable format.
  • Deletion — request permanent deletion of all your personal data.
  • Correction — request corrections to inaccurate personal data.
  • Revoke access — disconnect Google OAuth at any time through your Google account settings.

To exercise any of these rights, contact us at hello@wrapmysocials.com. We will respond within 30 days.

8. Cookies and Analytics

Our website uses essential cookies for functionality and self-hosted analytics (PostHog) for understanding usage patterns. We do not use third-party advertising cookies or tracking pixels.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via email or a prominent notice on our website. Your continued use of ChiefOS after changes are posted constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or your personal data, contact us at:

Email: hello@wrapmysocials.com

Website: wrapmysocials.com