Privacy Policy

Oryve is a software product developed and operated by IEB Group Wyoming LLC ("we", "us", "our"), a limited liability company registered in Wyoming, United States. This Privacy Policy applies to the Oryve web application available at oryve.app and any related services. If you have questions about this policy, contact us at eureka.lucis@gmail.com.

• ·Account data: Your GitHub username, display name, email address, and profile avatar — provided by GitHub when you authenticate via GitHub OAuth.
• ·Project data: Project names, descriptions, types, tasks, milestones, and notes that you create within Oryve.
• ·GitHub repository data: Commit messages, commit dates, and open pull request counts from repositories you explicitly link to a project.
• ·Usage data: Pages visited, features used, and timestamps — collected via standard server logs.
• ·AI interaction data: Prompts and project context sent to Anthropic's Claude API to generate briefings, validations, and suggestions on your behalf.
• ·Session data: Authentication tokens stored in secure, HTTP-only cookies to maintain your login session.

• ·To provide and operate the Oryve service — including displaying your projects, generating AI briefings, and syncing GitHub data.
• ·To authenticate you securely using GitHub OAuth (NextAuth v5).
• ·To generate AI-powered content (daily briefings, nudges, idea validations) by sending relevant project context to Anthropic's Claude API.
• ·To communicate with you about your account, service updates, or legal changes — via email only, no marketing without explicit consent.
• ·To detect and prevent abuse, fraud, or violations of these terms.
• ·We do NOT sell your personal data to any third party, ever.

• ·Anthropic (Claude API): Project names, descriptions, and task data are sent to Anthropic's API to generate AI content. Anthropic processes this data subject to their own Privacy Policy at anthropic.com/privacy.
• ·GitHub (OAuth): Authentication is handled by GitHub. Data shared is governed by GitHub's Privacy Statement at docs.github.com/en/site-policy/privacy-policies.
• ·Railway: Our backend server and PostgreSQL database are hosted on Railway. Data is stored in the United States.
• ·Vercel: The frontend application is deployed on Vercel. Request logs may be retained by Vercel subject to their privacy policy.
• ·We have no data-sharing agreements beyond what is necessary to operate the service.

We retain your data for as long as your account is active. If you request account deletion, we will permanently delete all your projects, tasks, and personal data from our systems within 30 days. GitHub OAuth tokens are session-scoped and are not stored permanently beyond what is needed for authentication. You can revoke Oryve's access to your GitHub account at any time via GitHub Settings → Applications.

• ·Right of access: You may request a copy of all personal data we hold about you.
• ·Right to deletion: You may request that we delete your account and all associated data.
• ·Right to portability: You may request an export of your project data in a machine-readable format.
• ·Right to correction: You may request that we correct inaccurate data.
• ·Right to restrict processing: You may request that we limit how we use your data.
• ·California residents (CCPA): You have the right to know what personal information is collected, to opt out of sale (we do not sell data), and to non-discrimination for exercising these rights.
• ·To exercise any of these rights, email eureka.lucis@gmail.com. We will respond within 30 days.

We use cookies solely for authentication (session tokens) and user preferences (theme selection stored in localStorage). We do not use advertising cookies, tracking pixels, or third-party analytics cookies. See our Cookie Policy for full details.

We implement industry-standard security measures including HTTPS-only transport, HTTP-only session cookies, and parameterized database queries to prevent injection attacks. Passwords are never stored — authentication is handled entirely by GitHub OAuth. However, no system is 100% secure. You use Oryve at your own risk. We recommend not storing highly sensitive confidential information (e.g., passwords, financial data) in project descriptions or task notes.

Oryve is not directed at individuals under the age of 13. We do not knowingly collect personal data from children under 13. If you believe a child under 13 has provided us with personal data, contact us immediately at eureka.lucis@gmail.com and we will delete it.

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date above and, where appropriate, by email. Continued use of Oryve after changes constitutes acceptance of the updated policy.