Last updated: July 8, 2026
Portal AI Inc. ("we", "us", "our") operates Portal, including the Portal One+ mobile application, Telegram bot, agent email service, and website at portal.ai. This policy describes how we collect, use, and protect your information.
We use third-party AI model providers to generate AI responses. Your messages and relevant context are sent to these providers for processing. Current providers include:
We may add or change AI providers over time. Providers process your messages and context only to deliver the service to you, under agreements or policies that prohibit using customer data for model training, fine-tuning, or model improvement.
If you connect third-party services (such as Google Calendar, Google Sheets, Strava, or others) through your account settings, your agent gains limited access to the specific data you authorized. Examples:
We add new integrations over time. You always choose which services to connect and what data to share - nothing is connected without your explicit action in your account settings.
How integration data is shared with AI models: When you ask your agent about data from a connected service, the relevant data is included in the prompt sent to our AI providers (Anthropic, Google Gemini, or AWS Bedrock) to generate a response. Providers process this data under agreements or policies that prohibit using it to train their models and that limit any retention to short-term operational purposes such as abuse monitoring and service delivery. Where a zero-retention processing route is available, we use it. It is not used for model training by any provider.
Scope and control: You choose which services to connect. Each integration can be disconnected at any time from your account settings, which immediately revokes your agent's access. Authentication tokens are stored securely per user and are not shared across accounts.
We use Stripe to process payments. Your payment information is governed by Stripe's Privacy Policy.
We use Resend to deliver emails from your agent's email address. Email content passes through Resend's infrastructure for delivery.
We do not sell your data to any third party.
Each user has an isolated environment - separate workspace, separate memory, separate conversation history. Other Portal users cannot access your conversations, files, emails, or preferences. Authorized Portal personnel and automated systems may access, process, or review your data only when reasonably necessary to operate, support, secure, debug, and maintain the reliability of the service; prevent abuse; comply with law; enforce our terms; protect rights, safety, and security; or perform actions you request or consent to. Approved service providers process your data only as needed to provide contracted services such as hosting, payments, email delivery, AI response generation, security, monitoring, and support tooling, under confidentiality, security, and no-training obligations. Your data is never used to train, fine-tune, or improve AI models.
Your data is retained as long as your account is active. If you cancel your subscription, your data is retained for 30 days to allow reactivation, after which we delete or de-identify account data unless we are required or permitted to retain limited records for security, fraud prevention, dispute resolution, legal compliance, accounting, or abuse investigation.
Export your data. You can download all your data - conversations, memory, files, and anything your agent created - at any time through your account settings page. The export is provided as a standard archive file. You can also email [email protected] and we'll prepare it for you.
Delete your data. You can request deletion of your entire account and all associated data through your account settings page or by emailing [email protected]. Access is revoked immediately. Data is permanently purged from our servers within 30 days unless limited retention is required or permitted for security, fraud prevention, dispute resolution, legal compliance, accounting, or abuse investigation.
Depending on where you live, you may have specific rights over your personal data. As a matter of policy we extend the rights described below to all users, applying them as described in this policy and as required by applicable law.
Communication between the app and our servers is protected with HTTPS/TLS. Data at rest is stored on secured infrastructure with encrypted disks or equivalent infrastructure-level protections where applicable. API keys and credentials are stored separately from user data and are not accessible to AI agents.
Portal is not intended for children under 18. We do not knowingly collect information from children.
We may update this policy from time to time. If we make material changes, we will notify you at least 30 days before they take effect - via a message in the Telegram bot and/or email. Minor clarifications may be posted without advance notice. The "last updated" date at the top always reflects the current version.
For privacy questions, data requests, or to exercise any of your rights:
[email protected]
For general support:
[email protected]
You can also manage your data directly at portal.ai/me.