How Obliqo handles your data

The data controller is Fabrizio Terzi, operating Obliqo under Pyragogy.org, based in Bergamo (24123), Italy. VAT number: IT04923300166. PEC (certified email for legal notices): fabrizio.pyragogy@pec.it. General contact: info@pyragogy.org.

• Product: Obliqo (obliqo.pyragogy.org)
• Contact for privacy matters: info@pyragogy.org

There is no Data Protection Officer. As a small EU-based operation, Obliqo is not legally required to appoint one. Fabrizio handles privacy requests personally.

Obliqo is a writing critique tool. You paste a draft (a blog post, article, newsletter, essay, social post), and four AI agents analyze it in sequence:

1. Researcher — fact-checks claims using web search.
2. Resonance Amplifier — identifies what works.
3. Hidden Assumption — surfaces unstated premises.
4. Synthesis Editor — produces a structured brief.

Obliqo does not rewrite your text. It returns structured feedback. What you do with it is up to you.

Account data (all users)

• Email address (provided by your OAuth provider — Google or GitHub — during sign-in; Obliqo never stores OAuth credentials)
• Account creation timestamp
• Plan status (Free, Pro, or Founder)
• Last activity timestamp
• Monthly and yearly run count

Subscription data (Pro and Founder only)

• LemonSqueezy customer ID and subscription ID
• Plan tier and start date
• Billing country (for VAT, handled by LemonSqueezy)

Payment card details are handled entirely by LemonSqueezy. Obliqo never sees or stores them.

Content you submit

• Text drafts you submit for analysis
• Source URLs (if you provide one)
• Document titles

AI-generated output

• Structured feedback from the four agents
• Revision Score
• Open questions

This section matters, so it's explicit.

Free plan

• During analysis, your drafts are sent to AI providers via OpenRouter under Zero Data Retention (ZDR) — providers do not retain prompts or outputs beyond the time strictly needed to produce a response, and do not train on your text.
• After analysis, the result is held in a server-side Temporary Delivery Buffer for up to 1 hour, so you can retrieve it across devices (e.g., start on mobile, retrieve on desktop). The buffer entry is automatically deleted by a scheduled cleanup function that runs every 15 minutes.
• Free drafts are never promoted to permanent history. They cannot be archived.
• Your drafts are additionally held in your browser's local storage for up to 48 hours so you can review them, then cleared automatically.
• In the Chrome extension, they are cleared immediately when you start a new analysis.

Pro and Founder plans

• Your drafts and the AI output are automatically saved to your account history.
• Saved runs are temporary by default and are automatically deleted 30 days after creation.
• You can promote any run to permanent archive. Archived runs are kept until you delete them or close your account.
• You can delete any individual run at any time from the app.

The 30-day deletion is a real technical enforcement, not a promise. A scheduled cleanup function runs every day at 03:00 UTC and deletes expired runs from the database.

Chrome extension specifics

The Obliqo Chrome extension uses the browser's built-in chrome.storage.local to cache your authentication token, preferences (intensity level, plan tier), the most recent analysis result, and related session metadata (quota counters, display name, autostart preference). This data is stored locally on your device by the browser, not on Obliqo's servers, and is cleared when you uninstall the extension.

To ensure user privacy on shared devices, all user-related data (authentication tokens and analysis results) are stored with a unique u_ prefix and are programmatically purged from local and session storage immediately upon logout.

The extension communicates with Obliqo's servers using the same authenticated API endpoints as the web app. All processing rules described above (Free vs Pro retention, agent analysis, ZDR for AI processing) apply identically whether you use the web app or the extension.

The extension does not read data from other tabs or websites you visit. It only processes text you explicitly select and send to analysis.

When you submit text for analysis, the extension also includes the title of the active page as analysis metadata, to help label your results. No other tab content is read.

Obliqo relies on the following sub-processors. Each one is listed with what it receives and where it operates.

Infrastructure

Appwrite — self-hosted on an EU VPS (Germany). Stores account data, subscription metadata, and Pro run history.

Cloudflare — CDN and DDoS protection. Processes IP addresses and HTTP request metadata in transit, for security and performance. Policy: https://www.cloudflare.com/privacy/

n8n — self-hosted on Obliqo's EU infrastructure. Orchestrates the AI agent calls. n8n temporarily logs execution data for debugging. Logs are automatically pruned after 7 days.

Payments

LemonSqueezy (US) — Merchant of Record. Receives your email, billing address, and payment details when you subscribe. LemonSqueezy handles global tax compliance and holds the payment relationship; Obliqo receives only subscription status. Policy: https://www.lemonsqueezy.com/privacy

Email

Resend (US) — sends lifecycle notifications (inactivity warnings, account deletion confirmations, re-engagement reminders). Receives your email address only. Operates under Standard Contractual Clauses.

Authentication

Google (Alphabet Inc.) (US) — OAuth authentication provider. Receives the authentication request and returns your email address and Google profile ID to Obliqo. Does not receive any Obliqo usage data. Operates under Standard Contractual Clauses. Policy: https://policies.google.com/privacy

GitHub (Microsoft Corporation) (US) — OAuth authentication provider. Receives the authentication request and returns your email address and GitHub username to Obliqo. Does not receive any Obliqo usage data. Operates under Standard Contractual Clauses. Policy: https://docs.github.com/en/site-policy/privacy-policies/github-general-privacy-statement

AI processing

OpenRouter Inc. (US) — routes AI requests to model providers. Operates under Zero Data Retention (ZDR), enforced by Obliqo both at the request level (headers on every call) and at the account level ("Always enforce ZDR" enabled in Obliqo's OpenRouter account). Under ZDR, OpenRouter routes only to providers that do not retain prompts or outputs beyond the time strictly needed to produce a response. Operates under Standard Contractual Clauses.

The text you submit is processed by third-party AI models accessed through OpenRouter. The specific providers and models may change over time based on availability, cost, and performance — OpenRouter selects among ZDR-compliant providers. At the time of this policy version, these include large AI labs operating in the United States.

None of these providers train their models on Obliqo user data. None retain prompts or outputs under ZDR.

Analytics

Plausible Analytics — self-hosted on Obliqo's EU infrastructure. Collects aggregated, anonymized page view counts. No cookies. No personal identifiers. No cross-site tracking.

Some sub-processors (Google, GitHub, LemonSqueezy, Resend, OpenRouter) are based in the United States. Transfers rely on the Standard Contractual Clauses adopted by the European Commission, or equivalent mechanisms recognized under GDPR. Where available, providers also self-certify under the EU-US Data Privacy Framework.

Under Article 6 GDPR:

• Account creation, login, processing your drafts: performance of a contract (Art. 6(1)(b)).
• Payment processing: performance of a contract (Art. 6(1)(b)) and legal obligations for tax compliance (Art. 6(1)(c)).
• Lifecycle emails (inactivity warnings, cancellation reminders): legitimate interest (Art. 6(1)(f)) in delivering the service you signed up for.
• Security and abuse prevention: legitimate interest (Art. 6(1)(f)).
• Plausible analytics: legitimate interest (Art. 6(1)(f)). No cookies, no identifiers, no individual tracking.

Free accounts

Deleted automatically after 90 days of inactivity. A warning email is sent at day 80.

Active Pro and Founder accounts

Data is retained while your subscription is active.

Ex-Pro accounts (subscription canceled or expired)

A 32-week grace period begins at cancellation:

• Week 16 — reminder email.
• Week 32 — account and all data deleted. A confirmation email is sent.

If you re-subscribe during the grace period, the timer resets.

What "deletion" means

When an account is deleted, either by you or by lifecycle policy:

• All saved runs (temporary and archived) are permanently deleted.
• Usage counters and subscription metadata are removed.
• Your email is removed from Resend.
• Any active subscription is canceled with LemonSqueezy.

LemonSqueezy may retain billing records for the period required by applicable tax law. This is outside Obliqo's control.

If you are in the EU/EEA, you have the right to:

• Access — request a copy of your personal data.
• Rectification — correct inaccurate data.
• Erasure — delete your data ("right to be forgotten").
• Portability — receive your data in a machine-readable format.
• Object or restrict — object to or limit processing.
• Withdraw consent — where consent is the legal basis.
• Lodge a complaint — with a supervisory authority. For Italian users: Garante per la protezione dei dati personali (https://www.garanteprivacy.it).

How to exercise these rights:

Most actions are available directly in the app — you can delete individual runs or close your account from Settings.

For anything else, email info@pyragogy.org. We respond within 30 days. We may ask you to confirm your identity before acting on the request, to prevent impersonation.

• All traffic uses HTTPS with TLS encryption.
• Authentication via Google or GitHub OAuth. Obliqo does not store passwords. OAuth credentials remain with the provider; Obliqo only receives the email and profile identifier required to create and link your account.
• API keys and credentials live in server-side environment variables, never in code or version control.
• Database access is restricted by Appwrite's attribute-based access control: you can only read and modify your own data.
• Infrastructure receives regular security updates.

Obliqo is a small operation with a correspondingly small attack surface. If a breach occurs that is likely to risk your rights or freedoms, we will notify you and the competent supervisory authority within 72 hours, as required by Article 33 GDPR.

Obliqo is not intended for users under 16. We do not knowingly collect data from minors. If we learn that we have collected data from a child under 16, we will delete it promptly. If you believe a child has provided us with data, contact info@pyragogy.org.

Obliqo uses AI models to analyze your text, but there is no automated decision-making that produces legal or similarly significant effects on you under Article 22 GDPR. The AI output is advisory feedback, not a decision about you.

This policy may change to reflect updates to the service, new sub-processors, or legal requirements. For material changes, we will notify registered users by email before the changes take effect. Continued use after notification means you accept the updated policy. The "Last updated" date at the top always reflects the current version.

Email info@pyragogy.org. We read every message.