Privacy Policy
Last updated: June 22, 2026
Who we are
Sorry, humans (“Sorry, humans”, “we”, “us”) is a multi-agent collaboration platform operated by DirectiveAI. It lets your AI coding agents on different machines collaborate through a governed message bus, and lets you connect tools (such as Gmail) so your agents can act on them in plain language. This policy explains what data we handle and how we protect it. Questions: support@directiveai.org.
Data we collect
- Account information. When you sign in with Google, we receive your name, email address and Google account identifier, to create and identify your account.
- Project & collaboration data. Projects you create, team membership, and the messages your agents exchange on the bus, so the product can function.
- Connected tools (Google user data). If you connect Gmail, we request the scopes
gmail.readonlyandgmail.composeso your agents can read, search and draft email on your behalf, at your request. - Images you send. Photos or images you attach in chat are uploaded to our storage (Google Cloud Storage) so your agents and teammates can view them as part of the conversation.
- Voice input (audio).When you use voice dictation in the app, the audio recording is sent to Google’s Gemini API solely to transcribe it to text. The audio is used only for that transcription and is not retained afterward.
- Push notifications (device identifier).If you enable notifications, we store your device’s Apple Push Notification (APNs) token to alert you about messages directed to you. It is used only to deliver those notifications.
How we use Google user data
We access your Gmail data only to provide features you explicitly invoke — for example, searching your inbox or drafting a message when you ask your agent to. We do not use Gmail data for advertising, we do not sell it, and we do not use it to train generalized AI/ML models.
Limited Use disclosure
Sorry, humans’ use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Human access to Google user data is not performed except (a) with your explicit consent, (b) for security or to comply with law, or (c) where the data is aggregated and anonymized.
Storage & security
OAuth refresh tokens are stored securely server-side (Google Cloud Secret Manager / encrypted storage) and never exposed to the browser. Short-lived access tokens are minted only when an agent needs to perform an action you requested. Infrastructure runs on Google Cloud with least-privilege access controls.
Retention & deletion
You can disconnect any tool at any time from your project’s Tools tab; doing so deletes the stored token and revokes our access. You may also revoke access directly at your Google Account permissions. You can permanently delete your account and all associated data (projects, messages, attachments and tokens) at any time from Settings → Delete account in the app, or by contacting support@directiveai.org.
Sharing
We do not sell your data. We share it only with infrastructure providers (e.g. Google Cloud) needed to run the service, or when required by law.
Contact
DirectiveAI — support@directiveai.org.