Privacy Policy

Last updated: June 3rd, 2026

This Privacy Policy explains how Oasive, Inc. (“Oasive”, “we”, “us”, or “our”) collects, uses, and shares information when you visit our website or use the Oasive AI copilot for fixed-income and structured-products analytics (together, the “Service”).

Beta notice. The Service is in private beta. During beta our team has broad access to data in the system and reviews it to operate and improve the Service. You should avoid submitting confidential, proprietary, or material non-public information, or third-party personal data. Please see our Terms of Service for more on beta data handling.

1. Who we are

Oasive, Inc. is the controller of personal information processed through the Service. You can reach us at privacy@oasive.ai.

2. Information we collect

2.1 Account information

When you create an account, our authentication provider collects your name, email address, and a user identifier. You may also provide your firm and role.

2.2 Inputs and conversation content

The Service stores the prompts, questions, and other content you submit (“Inputs”), your conversation history, and the responses the Service generates (“Outputs”). This content may contain whatever information you choose to include, so please follow the beta guidance above.

2.3 Usage and technical information

We automatically collect technical and usage information, including IP address, browser and device information, pages and features you use, timestamps, and similar data, through cookies and analytics tools.

2.4 Communications

We collect the content of messages, feedback, and support requests you send us, and your email subscription preferences.

3. How we use your information

  • To provide, operate, and secure the Service and your account;
  • To generate Outputs by processing your Inputs, including via third-party AI providers (see Section 4);
  • To debug, analyze, and improve the Service, including human review of Inputs and Outputs during beta;
  • To communicate with you about the Service and company news;
  • To maintain security and integrity and to comply with legal obligations and enforce our rights.

We do not sell your personal information.

4. AI processing of your inputs

To generate Outputs, your Inputs and relevant conversation content are transmitted to and processed by third-party AI model providers, currently including Anthropic, Google (Gemini and Vertex AI), and OpenRouter (which routes to underlying model providers).

We access these providers through their enterprise or developer APIs. Under those API terms, providers generally do not use content submitted via the API to train their foundation models; however, we do not control these third parties, and their processing is governed by their own terms and privacy policies.

5. Service providers and sub-processors

We share information with third parties that help us operate the Service. They act as processors on our behalf and are permitted to use information only to provide services to us. Our principal providers are:

  • Clerk — authentication and account management (name, email, user identifier).
  • Anthropic, Google, OpenRouter — AI model providers that process your Inputs to generate Outputs.
  • Google Cloud — hosting, our application database (which stores accounts, conversations, and message content), and AI infrastructure.
  • Vercel — website hosting and traffic analytics.
  • PostHog — product analytics (event metadata and a user identifier).
  • Sentry — error monitoring; error reports and on-error session replays may capture portions of content displayed or submitted in the app.
  • LangSmith — engineering observability that, when enabled, logs prompts and responses (including Input and Output content) to help us debug the Service.
  • Resend — sending transactional and announcement emails (name and email address).

We may also share information if required by law, in connection with a business transaction (such as a merger or acquisition), or to protect our rights, safety, or property.

6. Cookies and analytics

We and our providers use cookies and similar technologies to keep you signed in, remember preferences, and measure traffic and usage (through PostHog and Vercel Analytics), and Sentry may record on-error session replays. You can control cookies through your browser settings; disabling them may affect some features.

We are working on a cookie-consent mechanism for visitors in regions that require one.

7. Data retention

We retain account information, conversation content, and usage data for as long as needed to provide and improve the Service and for our legitimate business and legal purposes. During beta we have not yet finalized fixed retention periods; we will publish a formal retention schedule as the Service reaches general availability, and we may retain certain information longer where required by law.

8. Security

We use reasonable technical and organizational measures to protect information. However, the Service is in beta, our team currently has broad internal access to data, and no system can be guaranteed to be completely secure. Please take this into account when deciding what to submit.

9. Your privacy rights

9.1 United States (including California)

Depending on where you live, you may have the right to know about, access, correct, or delete the personal information we hold about you, and to not be discriminated against for exercising these rights. We do not sell or “share” personal information for cross-context behavioral advertising.

9.2 European Economic Area and United Kingdom (GDPR / UK GDPR)

If you are in the EEA or UK, you have the rights to access, rectification, erasure, restriction, data portability, and to object to processing, as well as the right to lodge a complaint with your supervisory authority. We rely on the following legal bases: performance of our contract with you (to provide the Service), your consent (where requested, e.g. certain cookies and marketing), and our legitimate interests (to secure and improve the Service).

To exercise any of these rights, contact us at privacy@oasive.ai. You can also unsubscribe from marketing emails using the link in those messages.

10. International transfers

We operate from the United States, and our providers may process information in the United States and other countries. If you access the Service from outside the United States, you understand that your information may be transferred to and processed in countries with different data protection laws. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses for transfers out of the EEA or UK.

11. Children's privacy

The Service is intended for business use and is not directed to children under 16, and we do not knowingly collect personal information from children. If we learn that we have, we will take reasonable steps to delete it.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the “Last updated” date above and may ask you to re-accept it. Your continued use of the Service after changes take effect means you accept the updated policy.

13. Contact us

If you have questions about this Privacy Policy or how we handle your information, contact us at:

Oasive, Inc.

Email: privacy@oasive.ai