Privacy Policy
Effective: 2026-06-01
Lightsky is a platform for building and running a team of AI agents for your business. This policy explains what we collect from operators and end users, how we use it, and what you control.
1. What we collect
Account. When you sign up, we collect your email address. If you sign in with Apple or Google, we receive only the identifiers those providers share with us.
Workspace data. Agent configurations you create, project READMEs you upload, trust zone settings, capability allow-lists, secrets you store, and run logs (including agent inputs, outputs, and traces).
Integration tokens. When you connect a third-party service (Slack, Google Workspace, and similar), we store the OAuth tokens needed to call that service on your behalf.
Customer messages. When your agents handle a chat from one of your customers, we store the message content so your agents can respond and you can review what happened.
End-user data. If you use Lightsky as the customer of a business that runs Lightsky (signed in with a magic link from your phone), we store your email address, your push token if you allow notifications, and the chats you have with each business you connect to.
Device telemetry. Basic request metadata (timestamps, user agent, IP at request time) for security and debugging. We do not collect contacts, location, photos, microphone, or browsing history.
2. How we use it
We use your account data to sign you in, deliver the notifications you have opted into, and bill you for paid plans.
We use your workspace data to run your agents, surface their activity on your dashboard, and enforce the trust zones and capability rules you have configured.
We use integration tokens only to make the API calls your agents trigger. We never read connected accounts for any other purpose.
3. Trust zones: what each assistant can see
Every agent in your workspace runs inside a labeled trust zone. The trust zone is enforced technically: an agent cannot read or write information outside its zone, even if it appears in a message or a connected service. This is the core safety property of Lightsky.
We do not sell your data. We do not share workspace data across workspaces. End-user chats with a particular business are visible only to that business.
4. Service providers
We rely on the following providers to operate Lightsky. They process data on our behalf under their own privacy policies.
- Anthropic and OpenAI, for the language model calls that power your assistants.
- Apple Push Notification service, to deliver push notifications.
- Resend, to send sign-in and notification emails.
- Stripe, to process payments on paid plans.
- Railway and Cloudflare, to host the service.
5. Data retention
Workspace data, including run logs, persists until you delete the agent, workspace, or account that owns it.
End-user chats remain until you remove a business from your account (Settings on a business chat, then Unsubscribe). The chat soft-deletes so it is no longer accessible to the business or to you.
You may request full deletion of your account and all associated data by emailing the address below.
6. Children's privacy
Lightsky is not intended for children under 13. If we learn that we have collected information from a child under 13, we will delete it.
7. Your rights
- Access: contact us to request a copy of your data.
- Deletion: contact us to delete your account and all associated data.
- Notifications: turn off push notifications in your device Settings, or per surface in the app.
8. Changes
We may update this policy. Material changes will be communicated by email or by in-app notice.
9. Contact
Questions, requests, or concerns: wallacebailey32@gmail.com