Skip to main content

Privacy Policy

Effective Date: May 7, 2025

Portal Labs Infrastructure US, Inc. ("we", "us", or "our") operates the Portal One application (the "Service"), an AI agent orchestration tool. This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.

We use your data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this policy.

1. Information Collection and Use
We collect different types of information for various purposes to provide and improve our Service to you.

Types of Data Collected:

  • Personal Data via Google OAuth:
    • If you choose to log in or connect to our Service using Google OAuth, we will receive basic profile information from your Google account. The specific information we receive is limited to:
      • Your name
      • Your email address
      • Your profile picture
    • We use this information solely for the purposes of creating and managing your user account, authenticating you when you use the Service, personalizing your experience (e.g., displaying your name), and for necessary communications related to your account or the Service. We do not request access to any sensitive or restricted Google scopes. Our access and use of this data adhere to Google's API Services User Data Policy.
  • User-Provided API Keys and Configurations:
    • To use the core functionality of our AI agent orchestration Service, you will provide your own API keys for third-party Large Language Model (LLM) providers and may create configurations for your AI agents within the Service.
    • These API keys (if you choose to save them in the Service) and configurations are stored securely as described in the "Data Security" section below.
  • Data Processed Through Third-Party LLMs and Conversation History (Conversation Data):
    • When you use our Service to send prompts to and receive responses from third-party Large Language Model (LLM) providers using your API keys, this data (which includes your prompts, the LLM-generated responses, and any related conversation metadata, collectively "Conversation Data") passes through our system.
    • We store this Conversation Data on your behalf and for your benefit. This allows us to provide you with features such as:
      • A persistent history of your conversations for your reference within the App.
      • The ability to review and "grade" or provide feedback on responses within the App.
      • The ability to export your Conversation Data.
      • To enable potential future features where you can utilize your Conversation Data for purposes you direct, such as fine-tuning your own models with various third-party providers (subject to the capabilities and terms of those providers).
    • This Conversation Data is stored securely on Google Cloud Firestore and is subject to the encryption and security measures detailed in the "Data Security" section of this policy.
    • Critically, as stated in our "AI Model Training, Data Sales, and Third-Party LLMs" section (Section 3), we do not use your specific Conversation Data to train our own proprietary artificial intelligence models. Your Conversation Data is treated as your confidential information.
  • Usage Data:
    • We may also collect information on how the Service is accessed and used ("Usage Data"). This Usage Data may include information such as your device's Internet Protocol address (e.g., IP address), browser type, browser version, the pages or features of our Service that you interact with, the time and date of your visit, the time spent, unique device identifiers, and other diagnostic data. This data is typically aggregated and anonymized or pseudonymized to help us improve the service and is not linked to your specific Conversation Data for purposes of analysis beyond general service operation.

2. How We Use Your Information
Portal One uses the collected data for various purposes:

  • To provide, operate, and maintain our Service.
  • To authenticate you and manage your user account.
  • To personalize your experience within the App (e.g., displaying your name).
  • To enable you to orchestrate interactions with your chosen third-party LLM providers using your API keys.
  • To store and provide you with access to your Conversation Data, enabling features such as history review, grading, and facilitating future user-directed fine-tuning capabilities.
  • To notify you about changes to our Service, terms, or important account-related information.
  • To provide customer support.
  • To gather analysis or valuable information (primarily from aggregated Usage Data) so that we can improve our Service, its features, and user experience.
  • To monitor the usage of our Service and ensure its stability, security, and integrity.
  • To detect, prevent, and address technical issues.

3. AI Model Training, Data Sales, and Third-Party LLMs
We are committed to transparency regarding the use of your data, especially in the context of artificial intelligence services.

  • No Sale of Data: We will not sell, rent, or lease your Personal Data, your Conversation Data, your API keys, or your configurations to any third party.
  • No Use for Our Own Model Training: We do not use any of your Personal Data, your specific Conversation Data (prompts and responses), or any other content you process or transmit through our orchestration Service to train, improve, or otherwise develop our own proprietary artificial intelligence models or any third-party models. Our Service acts as an orchestration layer for your benefit.
  • Third-Party LLM Providers: When you use our Service to interact with third-party LLM providers using your own API keys, your Conversation Data is sent to those providers. Your interactions with these third-party LLM providers are governed by their respective terms of service and privacy policies. We encourage you to review the policies of any third-party LLM provider you choose to use, as they may have different practices regarding data use, including for their own model training. Portal One is not responsible for the data handling practices of these external providers once data is transmitted to them under your instruction and using your API keys.

4. How We Share Your Information
We do not sell your Personal Data or Conversation Data. We may share your information in the following limited circumstances:

  • With Service Providers: We may employ third-party companies and individuals to facilitate our Service ("Service Providers"), provide the Service on our behalf (such as data hosting and infrastructure), perform Service-related services, or assist us in analyzing how our Service is used (typically using aggregated/anonymized Usage Data). These third parties have access to your Personal Data or other data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose. Our key service providers include:
    • Google Cloud Platform (GCP): We use GCP, specifically Firestore, for secure data storage (including your account information, configurations, encrypted API keys if you choose to save them, and your Conversation Data) and for hosting our application infrastructure. Data stored within Google Cloud Firestore is automatically encrypted at rest by Google.
  • For Legal Reasons: We may disclose your Personal Data or Conversation Data if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).
  • Business Transfers: If we are involved in a merger, acquisition, or asset sale, your Personal Data and Conversation Data may be transferred. We will provide notice before your Personal Data and Conversation Data are transferred and become subject to a different Privacy Policy.
  • With Your Consent: We may disclose your personal information or Conversation Data for any other purpose with your explicit consent.
  • Google User Data: Information obtained from Google APIs (your name and email address) will be used and transferred in compliance with the Google API Services User Data Policy, including the Limited Use requirements. It will not be shared with third parties except as necessary to provide or improve user-facing features that are prominent in our application's user interface (e.g., displaying your name in your profile), to comply with applicable laws, or as part of a merger, acquisition, or sale of assets (with prior notice to users). We will not use this data for serving advertisements.

5. Data Security
The security of your data is paramount to us. We implement and maintain reasonable administrative, physical, and technical security safeguards to help protect your Personal Data and Conversation Data.

  • Storage and Encryption: Your data, including your Google account information (name, email), app configurations, Conversation Data, and any API keys you provide for storage, is stored on Google Cloud Platform's Firestore service.
    • Encryption at Rest: Data stored within Google Cloud Firestore is automatically encrypted at rest by Google.
    • Encryption in Transit: We use industry-standard encryption protocols, such as Transport Layer Security (TLS)/Secure Sockets Layer (SSL), to protect your data when it is transmitted between your device, our Service, and Google Cloud Firestore.
  • Access Controls: We implement access controls within our systems to limit access to your data to authorized personnel who require it for the purposes outlined in this policy (e.g., customer support, system maintenance).

However, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means, including leveraging Google Cloud's robust security infrastructure, to protect your Personal Data and Conversation Data, we cannot guarantee its absolute security.

6. Data Retention
We will retain your Personal Data (Google account info, configurations) for as long as your account is active or as needed to provide you with the Service.
Your Conversation Data is retained to provide you with access to your history and to support the features described in this policy (such as review, grading, and future user-directed fine-tuning). This data will be retained for as long as your account is active, or until you choose to delete specific conversations or your entire account (if such functionality is provided directly within the app), or until you request its deletion in accordance with your data protection rights.
We will retain and use your Personal Data and Conversation Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.
Usage Data is generally retained for a shorter period, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer periods.

7. Your Data Protection Rights
Depending on your location and applicable law, you may have the following rights regarding your personal data and Conversation Data:

  • The right to access: You have the right to request copies of your personal data and Conversation Data that we hold.
  • The right to rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • The right to erasure (deletion): You have the right to request that we erase your personal data and Conversation Data, under certain conditions. You can request deletion of your account and all associated data, including Conversation Data, by contacting us at support@portal.one or delete individual conversations or your entire account through your account settings in the App.
  • The right to restrict processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • The right to object to processing: You have the right to object to our processing of your personal data, under certain conditions.
  • The right to data portability: You have the right to request that we transfer the data that we have collected (including your Conversation Data, where technically feasible) to another organization, or directly to you, under certain conditions.
  • The right to withdraw consent: Where we rely on consent for processing (e.g., for Google OAuth), you have the right to withdraw consent at any time (e.g., by revoking access through your Google account settings page: https://myaccount.google.com/permissions). Withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal.

If you wish to exercise any of these rights, please contact us at support@portal.one. We will respond to your request within a reasonable timeframe, and in any event within the time limits established by applicable law. We may need to verify your identity before processing your request.

8. Children's Privacy
Our Service is not intended for and does not address anyone under the age of 18. We do not knowingly collect personally identifiable information from children under this specified age. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent (or below our stated minimum age), we take steps to remove that information from our servers.

9. Links to Other Sites and Third-Party LLM Services
Our Service facilitates your interaction with third-party LLM providers. While we provide the orchestration layer, your use of these third-party services is subject to their own terms and privacy policies. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We strongly advise you to review the Privacy Policy of every third-party service you interact with via our App.

10. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top. For material changes, we may also provide a more prominent notice, such as through an in-app notification or by email to the email address associated with your account, prior to the change becoming effective.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. Your continued use of the Service after any changes or revisions to this Privacy Policy shall indicate your agreement with the terms of such revised Privacy Policy.

11. Contact Us
If you have any questions about this Privacy Policy, or if you wish to exercise any of your data protection rights, please contact us:

  • By email: support@portal.one
  • By visiting this page on our website: https://portal.one/privacy-policy