Legal

Privacy Policy

Last updated: May 25, 2026

Oneaction is a personal reading inbox that turns saved links, PDFs, EPUBs, and podcasts into a single suggested action per item. This policy covers the Oneaction website at oneaction.app, the web application at app.oneaction.app, the Oneaction Chrome extension, and the Oneaction desktop applications for macOS, Windows, and Linux.

We collect the minimum data needed to save your items and serve them back to you. We do not sell your data, we do not use it for advertising, and we do not use it to train AI models.

What the Chrome extension does

The Chrome extension is a one-click capture tool. It can:

  • Read the URL of the active tab when you click the toolbar icon, so it can send that URL to your Oneaction inbox.
  • Read your authentication cookies for app.oneaction.app, so the API request it makes is authenticated as you.
  • On x.com/i/bookmarks, sync your X bookmarks into your Oneaction inbox. The sync runs when you open the bookmarks page or on a periodic background alarm (roughly every five minutes). It uses your existing x.com session — Oneaction never sees or stores your X password.
  • Watch x.com network requests so it can learn the current GraphQL endpoint identifier X uses for the bookmarks API. Only the request URL pattern is inspected; request bodies and responses are not read by the sniffer.
  • On app.oneaction.app, mark the page as “extension installed” and relay save-progress events from the extension to the web app so the inbox can show your save in real time. No site content is read.
  • Show in-page or OS notifications confirming each save or sync.

The extension does notread pages you don't explicitly save, track browsing history, or send data to any third party other than app.oneaction.app (and x.com for the bookmarks sync, on your behalf, using your existing X session).

Why each Chrome permission is requested

  • activeTab + scripting — read the URL of the current tab when you click the icon, and render the in-page confirmation toast.
  • cookies — forward your Oneaction session cookie to the API so saves are authenticated.
  • notifications — OS-level fallback toast when in-page injection is blocked by the site.
  • alarms — schedule the periodic X bookmarks sync.
  • storage— remember the most recently synced X bookmark ID so the next sync only pulls what's new, plus the current X GraphQL endpoint identifier.
  • webRequest— observe the URL pattern of x.com's bookmarks API so we can sync against the current endpoint when X renames it.
  • Host access to app.oneaction.app, x.com, and api.x.com — the destinations the extension talks to. No other hosts are accessed.

What the web app stores

  • Account data — your email address and a stable user ID, provided by our authentication provider (Clerk).
  • Saved items — the URL, extracted title, summary, and one suggested action for each link you save. For PDFs and EPUBs you upload, the file itself is stored in encrypted blob storage. For podcasts, episode metadata is stored along with a reference to the audio URL.
  • Highlights and notes — text you highlight inside an article or EPUB, along with any notes or colours you attach.
  • Tags — labels you create to organise items.
  • Ask One chats — your questions and the AI responses, including citations back to your saved items.
  • X bookmarks — if you use the X sync, the tweet text, author handle, media URLs, and timestamp of each bookmarked tweet are stored as items in your inbox.
  • OAuth tokens — if you connect a third-party service (such as Todoist), the access token is encrypted with AES-GCM before being stored.
  • User settings — your reading preferences (theme, font, default todo app, workflow mode, onboarding state, AI summary toggle, etc.).

What the desktop app does

The Oneaction desktop app is a minimal wrapper around the web application. It signs you in with the same Clerk account, sends and receives the same data the web app does, and stores no personal data of its own beyond the OS-level session cookie required to keep you signed in.

How saved items are processed

When you save a link, the server fetches the article HTML, extracts the readable text, and sends that text to an AI model (currently Anthropic Claude, routed through the Vercel AI Gateway) to generate the one-action summary. The Gateway is configured for zero data retention by the model provider. Audio narration (text-to-speech), if you enable it, is generated by OpenAI; the article text is sent to OpenAI's speech API to produce the audio stream and is not retained by them under their API data policy. Podcast transcripts, when requested, are produced by OpenAI's Whisper model from the episode audio.

Third-party services

  • Clerk — authentication and session management.
  • Vercel — application hosting and the AI Gateway.
  • Supabase (Postgres) — managed database for your account and saved items.
  • Vercel Blob — encrypted file storage for uploaded PDFs and EPUBs.
  • Anthropic — AI extraction (via Vercel AI Gateway, no retention).
  • OpenAI — text-to-speech and podcast transcription, only when you use them.
  • Resend — transactional email (account notifications, onboarding reminders).
  • PodcastIndex — podcast feed and episode metadata lookup.
  • Todoist — optional OAuth integration to hand off actions to your Todoist account; the access token is encrypted at rest.
  • ScrapingBee — used only as a fallback when a saved page requires JavaScript to render its content.
  • X (Twitter)— the X bookmarks sync calls X's own API as you, using your existing browser session.

What we do not do

  • We do not sell your data.
  • We do not use your data to train AI models.
  • We do not show advertising.
  • We do not read or upload pages you have not explicitly saved.

Cookies and analytics

We use first-party cookies set by Clerk on oneaction.app and its subdomains to keep you signed in. We do not run third-party advertising or behavioural analytics on the marketing site or in the app. Server logs (HTTP request metadata such as IP address, user agent, and response status) are retained for a short period for operational and security purposes.

Data retention and deletion

  • Items in your Trash are permanently deleted after 30 days.
  • The shared article cache (extracted article text used to speed up repeated reads) is pruned after 90 days.
  • Items in your inbox or archive remain until you delete them.
  • You can delete your entire account from the dashboard, which removes your saved items, settings, highlights, chats, OAuth tokens, and uploaded files. Deletion is permanent.

Children

Oneaction is not directed at children under 13 and we do not knowingly collect personal information from them. If you believe a child has provided us with personal information, contact us at privacy@oneaction.app and we will delete it.

International transfers

Our service providers are located primarily in the United States and the European Union. When you use Oneaction, the data described above may be transferred to and processed in those jurisdictions. We rely on standard contractual clauses and the data-processing agreements of our providers to safeguard those transfers.

Your rights

Depending on your jurisdiction, you may have the right to access, correct, export, or delete your personal data, and to object to certain types of processing. You can exercise most of these rights directly from your account dashboard. For anything else, reach out to privacy@oneaction.app and we will respond within a reasonable timeframe.

Changes to this policy

If we materially change how we handle your data, we will update the “Last updated” date and, where appropriate, notify active users by email.

Contact

Questions about this policy or a request to delete your data: privacy@oneaction.app.

Take your first action

Start for free

No credit card. Free during beta.