Omnia
Start Free

Privacy Policy

Last updated: January 7, 2026

1. Introduction

Welcome to Omnia. This Privacy Policy explains how we collect, use, disclose and protect your information when you use our services. By accessing or using Omnia, you accept the practices described in this policy.

We take the privacy of our users very seriously. This policy applies to all information we collect through our website, mobile applications and any related services.

Data Controller: Leads Agency SRL

Address: Heredia, Santo Domingo, Pará, Costa Rica

Privacy Contact: pat@omniacr.com

2. Information We Collect

2.1 Information You Provide Directly

When you register or use our services, we collect:

  • Registration data: Full name, email address, password (encrypted)
  • Professional information: Type of professional (psychologist or other mental health professional), specialization
  • Patient information: Data you enter about your patients for clinical analysis
  • Generated content: Queries, conversations with AI, digital records
  • Communications: When you contact us by email or support forms

2.2 Automatically Collected Information

  • Usage data: Pages visited, features used, session time
  • Device information: Browser type, operating system, IP address
  • Location data: Country and region inferred from your IP address
  • Cookies and similar technologies: To improve user experience
  • Server logs: Automatic system activity records

2.3 Third-Party Information

  • Social authentication: If you register with Google, we receive basic profile information
  • Payment processors: PayPal processes payments but we do not share card data
  • Analytics providers: Google Analytics for usage analysis

3. How We Use Your Information

We use collected information for the following legitimate purposes:

3.1 Service Provision

  • Create and manage your user account
  • Process and analyze your clinical queries using artificial intelligence
  • Generate multidimensional analyses and therapeutic suggestions
  • Store and manage patient records
  • Provide access to our specialized knowledge base

3.2 Service Improvement

  • Analyze usage patterns to optimize features
  • Develop new features based on user needs
  • Identify and fix technical errors

3.3 Communication

  • Send transactional emails (confirmations, account alerts)
  • Notify changes to our terms or policies
  • Provide technical support and customer service
  • Inform about new features (with opt-out option)

4. Sharing Information with Third Parties

4.1 Service Providers

We share information with trusted providers:

  • Google Cloud Platform: Data storage (Firestore), hosting (Cloud Run)
  • Pinecone: Vector database for semantic search
  • DeepSeek AI: Natural language processing for clinical analysis
  • PayPal: Secure subscription payment processing
  • Vercel: Frontend hosting and distribution

⚠️ Important: We do NOT sell data

We never sell, rent or share your personal information with third parties for marketing purposes.

5. Data Security

We implement advanced technical measures to protect your information:

  • Encryption in transit: All traffic uses HTTPS/TLS
  • Encryption at rest: Sensitive data encrypted in databases
  • Robust authentication: Firebase Authentication with secure JWT tokens
  • Access control: Multi-tenant architecture
  • Automatic backups: Daily backups
  • Continuous monitoring: Anomaly detection systems

6. Data Retention

We retain your information for different periods:

  • Active accounts: While your account remains active
  • Inactive accounts: Up to 2 years after last activity
  • Transactional data: 5 years for legal tax requirements
  • System logs: 90 days for troubleshooting
  • Backups: Automatically purged after 30 days

7. Your Privacy Rights

7.1 Right of Access

You can request a copy of all personal data we have about you.

7.2 Right of Rectification

You can correct inaccurate or incomplete data from your profile.

7.3 Right of Deletion

You can request deletion of your account and personal data.

7.4 Right of Portability

You can receive your data in JSON or CSV format.

To exercise these rights:

📧 Email: pat@omniacr.com

⏱️ Response time: 30 business days

8. Cookies and Tracking Technologies

We use cookies to improve your experience. For more details, see our Cookie Policy.

9. International Transfers

Your data may be processed on servers located in:

  • United States (Google Cloud Platform, Pinecone, Vercel)
  • European Union (some infrastructure services)

We ensure all our providers comply with international data protection standards.

10. Children's Privacy

Omnia is designed for professionals over 18 years old. We do not intentionally collect information from minors.

11. Changes to this Policy

We may update this policy occasionally. Significant changes will be notified by email and through notice on the website.

12. Contact

Data Protection Officer

📧 Email: pat@omniacr.com

🏢 Company: Leads Agency SRL

📍 Address: Heredia, Santo Domingo, Pará, Costa Rica

📄 Related Documents

Privacy Policy - Omnia | Omnia