StoryLens

Last updated: May 5, 2026

Privacy Policy

This Privacy Policy describes how Console One Inc (“Console One,” “we,” “us”), an Ontario corporation, collects, uses, and shares information when you use StoryLens (the “Service”). We've designed StoryLens to be local-first by default — most data stays on your device unless you explicitly opt into cloud features on our Team or Enterprise tiers.

1. Information We Collect

Information you provide

  • Account information (name, email, payment details for paid tiers)
  • Communications you send us (support requests, feedback)
  • API credentials you connect to your tools (OAuth tokens, model API keys)

Information collected automatically

  • Device and usage data (OS version, app version, crash reports, anonymized feature usage)
  • Cookies and similar technologies on our marketing website (storylens.one)

What we do not collect on the Individual tier

  • Your tool data (issues, PRs, messages, files) is processed locally on your device
  • Your model API keys remain in local storage
  • Agent activity stays on your machine and is not shared with our servers or other users

2. How We Use Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Process payments and manage subscriptions
  • Send transactional and (with consent) marketing emails
  • Detect and prevent abuse, fraud, or violations of our Terms
  • Comply with legal obligations

3. Cloud Features and Shared Workspace (Paid Tiers)

When you upgrade to a paid tier, you opt into cloud features that involve processing data on our infrastructure. Specifically:

  • Cloud agents: Scheduled prompts and the data they pull from your connected tools are processed on our servers to run the agents.
  • Shared workspace and context bridge:If you use StoryLens with teammates, agent activity, task history, decisions, and contextual metadata generated by agents are stored in a shared workspace so that your team's agents can coordinate. You control which agents and tools participate in the shared workspace.
  • Included LLM credits:If you use the LLM tokens included in your plan (rather than your own API keys), prompts and outputs are routed through our accounts with model providers (e.g., Anthropic, OpenAI). When you use your own API keys (“BYOK”), calls go directly from your environment to the provider and we do not relay them.

All cloud-processed data is encrypted in transit and at rest. You can configure ingestion boundaries to exclude specific data sources, repositories, or content types from cloud processing.

4. Data Retention

  • Account and billing information: Retained for the duration of your account, plus a reasonable period afterward to comply with legal and tax obligations.
  • Cloud agent data and shared workspace content: Retained for the duration of your subscription and deleted from our systems within 30 days of account cancellation, except where retention is required by law.
  • You may request deletion of your data at any time by emailing privacy@storylens.one.

5. Third-Party Services

We use the following service providers:

  • Paddle.com Market Limitedfor payment processing as our Merchant of Record (subject to Paddle's privacy policy)
  • Google Analytics for marketing-website analytics, configured with IP anonymization
  • Cloud infrastructure (AWS) for hosting cloud features on paid tiers
  • Model providers (Anthropic, OpenAI, and others) — directly when you provide your own keys, or through our accounts when you use included plan credits

A current list of sub-processors is available upon request by emailing privacy@storylens.one.

6. Cookies

Our marketing website uses cookies for analytics and to remember preferences. Where required by law, we obtain consent before setting non-essential cookies. The StoryLens application itself does not use web cookies.

7. Your Rights

Depending on your jurisdiction — including under PIPEDA (Canada), Quebec's Law 25, GDPR (EU/UK), and CCPA/CPRA (California) — you may have rights to:

  • Access the personal information we hold about you
  • Correct or delete your information
  • Object to or restrict processing
  • Receive your data in a portable format
  • Withdraw consent at any time
  • Lodge a complaint with your local data protection authority

To exercise these rights, email privacy@storylens.one.

8. Security

We use industry-standard measures to protect your information, including encryption in transit and at rest, access controls, and regular security reviews. No system is perfectly secure; report any suspected vulnerability or breach to security@storylens.one.

9. Children's Privacy

The Service is not directed at children. We do not knowingly collect personal information from children under 13 (or under 16 in jurisdictions where that higher threshold applies). The Service is intended for users who are at least 18 years old, or the age of majority in their jurisdiction.

10. International Transfers

We may transfer information to countries other than where you reside, including Canada and the United States. Where required, we use Standard Contractual Clauses or other approved mechanisms to safeguard such transfers.

11. Changes to This Policy

We may update this Policy from time to time. We will notify you of material changes by email, through the Service, or by posting prominent notice on our website. Continued use of the Service after changes take effect constitutes acceptance.

12. Contact

For privacy questions or to exercise your rights, contact:

Email: privacy@storylens.one

Mailing address:
Console One Inc
26 Colin Avenue
Toronto, ON M5P 2B9
Canada

See also: Terms of Service · Refund Policy