Omni AIOmni AIBack home

Legal

Privacy Policy

Effective

This policy explains what Omni AI (“Omni AI,” “we,” “us”) collects when you use omnileadsagi.com and any product or service we operate under the Omni AI brand (collectively, the “Service”), how we use it, who we share it with, and the rights you have over it. Omni AI is operated by Sitani Mafi. You can reach us at sitanim8@gmail.com.

Information we collect

We only collect what we need to run the Service, answer the requests you send us, and improve the product. Specifically:

  • Information you give us directly. Your name, email address, phone number, business name, and any notes you enter into a lead form, newsletter sign-up, sign-in/sign-up form, booking flow, or contact email. If you create an account, we also store the username and password you choose (passwords are stored hashed — we never see them in plain text).
  • Payment information. When you purchase Interlinked Premium or any other paid offering, you enter your card details on a Stripe-hosted checkout page. Stripe processes and stores your card data. We receive from Stripe only the limited subscription metadata we need to grant access (plan, status, customer ID, renewal dates) — never your full card number.
  • Usage and device information. When you visit the Service we automatically log the pages you view, the buttons and links you click, the forms you submit, the URL that referred you, your UTM tags, your approximate viewport size, your user-agent string, and the timestamp of each event. We do this with two identifiers: a persistent visitor ID stored in your browser’s localStorage, and a per-tab session ID stored in sessionStorage. These are random strings — they don’t include your name or email unless you have also signed in.
  • IP address. Vercel, our hosting provider, receives your IP address as part of every request you make. We use this for security, abuse prevention, and rough geographic analytics.

How we use it

  • Deliver the Service — sign you in, route leads to the right inbox, process payments, send booking confirmations, grant access to premium content, and keep the site running.
  • Communicate with you — reply to the messages and demo requests you send us, send the newsletter you signed up for, notify you about account or billing changes, and (if you ask for a strategy call) schedule and prepare for it. Marketing and transactional emails are clearly distinguishable; marketing email always contains a one-click unsubscribe link.
  • Improve the product — analyze which pages, CTAs, and campaigns perform, fix bugs, and prioritize what to build next. Product analytics are aggregated internally and never sold.
  • Protect the Service — detect abuse, fraud, scraping, and policy violations, and cooperate with lawful requests from authorities when we are legally required to.

Who we share it with

We do not sell your personal information. We share it only with the service providers we need to run the Service, and only to the extent they need to do their job:

  • Supabase — our database and authentication host. Stores profiles, leads, newsletter subscribers, bookings, and event logs.
  • Stripe — payment processor. Handles all card data end-to-end. See stripe.com/privacy.
  • Resend — our transactional and newsletter email provider. Receives the email address and name we need to deliver the message.
  • Vercel — our web host. Terminates TLS and serves the site.
  • Legal and safety recipients — courts, regulators, or law enforcement if we receive a valid legal request, or if we believe disclosure is necessary to prevent fraud or harm.
  • Successor entities — if Omni AI is acquired or merged, your information may be transferred to the successor as part of that transaction. We’ll post a notice on this page if that happens.

Cookies and browser storage

We don’t use third-party advertising cookies. We do use the following:

  • omni_visitor_id (localStorage, long-lived) — a random identifier so we can count unique visitors.
  • omni_session_id (sessionStorage, cleared when you close the tab) — a random identifier so we can group events into sessions.
  • omni_user (localStorage, only after you sign in) — your signed-in profile summary so we don’t re-authenticate on every page load. Clearing it is equivalent to signing out.
  • Supabase auth cookies — short-lived tokens that keep your session secure.
  • Stripe cookies — Stripe sets its own cookies on its checkout pages for fraud prevention. Stripe’s privacy policy governs those.

You can clear any of these from your browser settings at any time. Clearing them will sign you out and reset your analytics identifiers.

Retention

We keep your information for as long as your account is active or as long as we need it to provide the Service. Lead and booking records are retained for up to 24 months for business continuity and legal defense. Event analytics are retained for up to 18 months. Billing records (including invoices Stripe issues on our behalf) are retained for the period required by U.S. tax and accounting law, typically at least 7 years. After the applicable retention window, we delete or anonymize the data.

Your rights

Depending on where you live (California, the EU/UK, and several U.S. states explicitly grant these; we extend them to everyone), you have the right to:

  • Access the personal information we hold about you.
  • Correct information that is inaccurate or incomplete.
  • Delete your information, subject to the retention rules above.
  • Opt out of marketing email (use the unsubscribe link or reply “unsubscribe”).
  • Export a machine-readable copy of your information.
  • Object to or restrict certain processing, including any automated decision-making.
  • Lodge a complaint with a data-protection authority.

To exercise any of these rights, email sitanim8@gmail.com from the email address associated with your account. We will respond within 30 days.

Security

We use TLS in transit, encrypted storage at rest, hashed passwords, and access controls on our production systems. No system is perfectly secure; if we discover a breach that materially affects you, we will notify you as required by applicable law.

International transfers

Our providers (Supabase, Stripe, Resend, Vercel) operate globally, including in the United States. By using the Service from outside the U.S., you consent to your information being processed in the U.S. and in other jurisdictions where our providers operate. Where required, our providers offer standard contractual clauses or equivalent safeguards.

Children

The Service is not directed at children under 13 and we do not knowingly collect personal information from children under 13. If you believe a child under 13 has given us personal information, please email us and we will delete it.

Changes to this policy

When we make material changes we will update the effective date at the top of this page and — for significant changes — post a notice on the home page or email registered users. Your continued use of the Service after the effective date means you accept the updated policy.

Contact

Questions, requests, or complaints? Email Sitani Mafi, founder, at sitanim8@gmail.com. Include “Privacy” in the subject so we can route it correctly.

See also: About Omni AI · FAQ