Privacy Policy
Last updated: April 22, 2026
Kagami Inc. (the "Company") establishes this Privacy Policy (the "Policy") regarding the handling of personal information in the web service "Osarai" (the "Service").
Article 1 (Collection of Personal Information)
The Company collects personal information through the following methods: 1. Information obtained at registration or sign-in: email address. When Google account integration is selected, display name and profile picture are additionally obtained. For email-based one-time password (OTP) authentication and email change features, the email address is used for authentication and contact. 2. Information automatically collected through use of the Service: access logs, IP addresses, browser type, pages viewed, and dates/times of use 3. Information obtained from partners: transaction-related information from the payment processor (Stripe, Inc.)
Article 2 (Purpose of Use)
The Company uses collected personal information for the following purposes: 1. Providing, operating, and improving the Service 2. Authenticating and managing User accounts 3. Processing billing and managing payments for the Paid Plan 4. Responding to inquiries 5. Responding to violations of the Terms of Service 6. Sending important notifications regarding the Service 7. Analyzing usage patterns (including creation of anonymized statistical data) 8. Other activities incidental to the above purposes
Article 3 (Changes to Purpose of Use)
The Company will only change the purpose of use to the extent reasonably related to the original purpose. Users will be notified of any such changes or the changes will be published on the Service's website.
Article 4 (Disclosure to Third Parties)
1. The Company will not disclose personal information to third parties without prior consent, except in the following cases: - When required by law - When necessary for the protection of life, body, or property and consent is difficult to obtain - When particularly necessary for public health or child welfare and consent is difficult to obtain - When cooperation with government authorities is necessary and consent may impede such cooperation 2. Entrustment of personal information handling to service providers within the scope necessary for the purpose of use, and provision accompanying business succession, do not constitute third-party disclosure. Payments are processed through Stripe, Inc., a third-party provider, and the Company does not store credit card information.
Article 5 (External Data Transmission)
The Service transmits information from Users' devices to the following external services to the extent necessary for providing the Service: 1. Google LLC (Authentication): Authentication tokens and account identifiers are transmitted when Users sign in with Google. 2. Resend, Inc. (Email delivery): To deliver one-time sign-in codes for email-based authentication and confirmation links for email address changes, destination email addresses and message contents are relayed through Resend's servers. Please refer to Resend's Privacy Policy (https://resend.com/legal/privacy-policy). 3. Stripe, Inc. (Payments): Transaction and payment session information is transmitted for processing Paid Plan payments. 4. PostHog, Inc. (Analytics): Page view data, interaction logs, browser information, and device information are transmitted from both the web application and the browser extension for analyzing and improving Service usage. We use this information as anonymized statistical data that does not identify individuals. 5. Functional Software, Inc. (Error Tracking): Error information and application behavior data are transmitted from both the web application and the browser extension to Sentry for maintaining Service stability and improving quality.
Article 6 (Security Measures)
The Company implements the following security measures to prevent leakage, loss, or damage of personal information: 1. Establishment of basic policy: A basic policy for the proper handling of personal information has been established. 2. Organizational security measures: A person responsible for handling personal information has been designated and handling regulations have been established. 3. Human security measures: Employees are educated on the proper handling of personal information. 4. Physical security measures: Measures are taken to prevent theft of devices and electronic media that handle personal information. 5. Technical security measures: Access controls, communication encryption, and unauthorized access prevention measures are implemented. 6. Understanding of external environment: Personal data is stored on servers located in Japan.
Article 7 (Disclosure, Correction, and Suspension of Use)
1. Users may request disclosure (including provision via electronic records), correction, addition, deletion, suspension of use, erasure, or suspension of third-party provision of their retained personal data in accordance with the Act on the Protection of Personal Information. 2. Identity verification will be conducted before responding. Please contact the inquiry point in Article 9.
Article 8 (Changes to This Policy)
The Company may change this Policy as needed. If changes significantly affect Users, prior notice will be provided. The revised Policy takes effect upon posting on the Service's website.
Article 9 (Contact)
For inquiries regarding the handling of personal information or requests for disclosure, please contact: Company: Kagami Inc. Email: support@osar.ai