Gray

Privacy Terms

Gray Privacy Policy

Effective date: May 23, 2026

This Privacy Policy explains how Layer Gray Inc., a Delaware corporation doing business as Gray ("Gray," "we," "us," or "our"), handles information when you use the Gray mobile app, website, voice hub, beta program, and related services (the "Service").

If you do not agree with this Privacy Policy, do not use the Service.

1. Summary

Gray is a referral-only voice and AI hub. The Service processes voice, text, files, images, and connected-service data that you choose to provide.

Gray pairs your spoken request with AI models (OpenAI for voice, Anthropic for the brain) and connected third-party services (such as Composio-managed connectors) to fulfill what you ask. Some features (Voice History, Files, Conversation logs, Feedback, Connections) store content on Gray-managed infrastructure so the feature can work. Voice audio itself is streamed live to OpenAI for processing and is not retained by Gray after the request completes (transcripts and AI responses may be retained if Voice History is enabled).

Gray offers two deployment options: (a) hosted — your brain runs in a per-user container on Gray-managed infrastructure, and (b) self-host — your brain runs on a server you control over your private Tailscale tailnet. On self-host, your files and connected-service credentials stay on your own server; only voice audio (to OpenAI) and brain prompts (to Anthropic) leave your network during a request.

2. Information We Collect

We collect information in the following categories.

Account And Invite Information

We may collect your name, email address, invite code, invite status, account slug, instance URL, authentication status, support requests, and administrative records needed to invite you, provision your account, provide support, prevent abuse, and operate the Service.

Voice, Audio, Text, Images, And Files

When you use voice or chat features, Gray may process:

microphone audio;
transcriptions of your speech;
text prompts and messages;
model responses;
uploaded images or files;
metadata needed to route, debug, and secure the request.

Depending on the product configuration, this content may be processed by Gray's servers and by third-party AI providers, including OpenAI. If History, uploads, Files, feedback, or other storage features are enabled, content you submit may be stored so that the feature can work.

Device And App Information

We may collect or process device type, operating system, app version, IP address, approximate location derived from IP address, crash/error logs, security events, authentication events, push notification subscription data, and similar operational information.

Local Device Credentials

The Gray app may store your instance URL and login credentials locally in the iOS Keychain. These credentials are used to connect your app to your Gray instance. Gray may also use Face ID or your device passcode for app-lock features. Biometric verification is handled by your device operating system; Gray does not receive or store your Face ID template.

Connected Services

If you connect third-party services, such as email, commerce, storage, calendar, or other integrations, Gray may process the information needed to connect and use those services. This may include account identifiers, connection status, OAuth tokens, API keys, or service data retrieved at your direction. Some integrations may be handled by third-party connection providers.

Feedback And Communications

If you submit feedback, bug reports, email us, or otherwise communicate with us, we collect the information you provide and related metadata.

Subscription And Billing Information

If you subscribe to a paid plan, Gray receives transaction identifiers and subscription state from the payment processor that handled your purchase:

iOS in-app subscription (Apple StoreKit) — Gray receives the

StoreKit-signed transaction JWS (which includes the Apple transaction id, product id, and renewal info). Apple holds your payment card details.

Web subscription (Stripe) — Gray receives the Stripe customer id and

subscription id. Stripe holds your payment card details. Stripe processes taxes on our behalf.

Gray does not see your full card number on either rail.

3. How We Use Information

We use information to:

provide, operate, and improve the Service;
process voice, text, file, and image requests;
provision and secure user instances;
authenticate users and prevent unauthorized access;
provide app-lock, credential storage, invite, and support features;
connect third-party services at your direction;
debug, monitor, and protect the Service;
comply with law, enforce our terms, and prevent abuse.

We do not sell your personal information.

We do not use your voice, prompts, files, or responses to train Gray-owned models unless we first provide notice and obtain any required consent.

4. AI Providers And Integration Brokers

Gray sends your voice audio, transcripts, prompts, files, images, and related content to the following processors to provide the Service:

OpenAI — voice (Realtime API) + transcription. Receives microphone

audio streams during voice sessions and returns synthesized speech + transcripts. Subject to OpenAI's API data controls (API data is not used to train OpenAI models unless the API customer explicitly opts in; we have not opted in). OpenAI may retain abuse-monitoring logs unless Gray has been approved for Zero Data Retention or Modified Abuse Monitoring. https://openai.com/policies/api-data-usage-policies

Anthropic — the brain (Claude). Receives text prompts and prior

conversation context for AI processing and returns text answers + tool calls. Subject to Anthropic's Usage Policies. Anthropic does not train on API inputs by default. https://www.anthropic.com/legal/privacy

Composio — connector broker. When you connect a third-party

service (Gmail, Slack, Shopify, GitHub, etc.) Gray uses Composio's MCP proxy to route tool calls to that service. Composio holds the OAuth tokens; Gray holds only a reference id. https://composio.dev/privacy

Other vendors used in narrow operational roles (hosting, email delivery, error logging, push notification routing) are described in §8 below.

If we add new AI providers or integration providers, this Policy will be updated and you will see a notice on the next launch.

5. Recording And Consent

Gray may process microphone audio when you use voice features. You are responsible for making sure you have permission to record or transmit any person whose voice, image, or information you submit through the Service.

Do not use Gray to secretly record calls, meetings, or private conversations. Recording-consent laws vary by location, and some places require consent from all participants.

6. Sensitive Information

Do not submit information that you are not authorized to share. Unless we separately agree in writing, Gray is not designed for:

medical diagnosis or treatment;
emergency services;
legal, tax, investment, or financial advice;
children's data;
biometric identification or voiceprint authentication;
regulated records or protected health information;
passwords, API keys, private keys, seed phrases, or other secrets.

If you choose to submit sensitive information, you do so at your own risk and must have all rights and permissions needed to submit it.

7. Data Retention

We retain information only as long as needed for the purposes described in this Policy, unless a longer period is required or permitted by law.

Working retention schedule:

Category	Intended retention
Voice audio	Not retained by Gray after processing, unless a feature stores it or logs it.
Chat transcripts	Not retained by Gray after processing in no-history mode; retained if History is enabled.
Uploaded files/images	Deleted after processing in no-retention mode; retained if Files/uploads features are enabled.
Feedback and support messages	Retained while needed for support and product improvement.
Invite/account/admin records	Retained while your account is active and as needed for security/legal purposes.
Security logs	Retained as needed to secure the Service and investigate abuse.
Push subscription data	Retained while notifications are enabled or until removed.
Local Keychain credentials	Stored on your device until you sign out, clear the app, or uninstall the app.
Connected-service tokens	Held by Composio (broker); Gray stores only a reference id. Retained until you disconnect the service or close your account.
Apple IAP transaction ids	Retained while the subscription is active and for the period required for refund / audit support after cancellation.
Stripe customer + subscription ids	Same as above.
Archived accounts	After account deletion, your record is flipped to `status: archived` and your user_token + login are wiped. The record itself is preserved for downline-referral integrity, abuse/audit trails, and legal hold. Container + workspace volumes are stopped + removed at deletion time.

8. Sharing Information

We share information with:

AI providers (OpenAI, Anthropic) to process your voice + text requests

(see §4);

Composio as the connector broker when you connect a third-party

service;

Apple and Stripe as payment processors for in-app and web

subscriptions respectively;

Hetzner (hosting), Tailscale (in self-host only), Cloudflare

(DNS/edge for some surfaces) as infrastructure providers;

Hub-side telemetry (Langfuse) for AI trace observability — turn

prompts + outputs may be logged for debugging and abuse review;

Third-party services you connect at your direction (Gmail, Slack,

Shopify, etc. via Composio);

Professional advisors (lawyers, accountants);
Authorities, courts, or other parties when required by law or needed

to protect rights, safety, and security;

A buyer or successor in a merger, acquisition, financing,

reorganization, or sale of assets.

We do not sell personal information or share it for cross-context behavioral advertising.

9. Your Choices

Depending on your location and product configuration, you may:

Delete your account in-app: Settings → Security → Delete account. This

archives your record, stops + removes your hosted container, and revokes all device sessions.

Disconnect a third-party service: Settings → Connections → tap the

connector → Disconnect.

Turn off push notifications: Settings → Notifications.
Disable Face ID app-lock: Settings → Security → App Lock.
Sign out on this device: Settings → Sign out.
Object to or restrict certain processing under applicable law.
Opt out of any legally defined sale, sharing, or targeted advertising

if those practices ever apply (today, they do not).

For any request we cannot fulfill in-app, contact privacy@layergray.com.

10. Children

The Service is not directed to children under 18. You may not use the Service if you are under 18. We do not knowingly collect personal information from children under 13. If you believe a child has provided information to us, contact privacy@layergray.com.

11. Security

We use reasonable technical, administrative, and organizational safeguards designed to protect information. These may include invite-only access, per-user instances, authentication, iOS Keychain credential storage, optional Face ID app lock, encryption for certain credentials, and access controls.

No system is perfectly secure. You are responsible for protecting your device, invite link, and account credentials.

12. International Users

Gray is operated from the United States. If you use the Service from outside the United States, your information may be processed in the United States and other countries where we or our providers operate.

13. Changes

We may update this Privacy Policy from time to time. If we make material changes, we will provide notice as required by law. The updated Policy will be effective when posted or when otherwise stated.

14. Contact

Layer Gray Inc. d/b/a Gray

Privacy: privacy@layergray.com

Legal: legal@layergray.com

Mailing address available on request at the email above.