Dot is a screen-aware assistant. It should be clear when Dot sees data, where that data goes, and how connected services such as Google Workspace are used.
Last updated: June 2, 2026
Dot does not continuously record your screen. When you start a voice or typed turn, Dot may process your transcript, a fresh screenshot of your screen, selected text, foreground document context, and the tool results needed to answer or perform the task you requested.
CTO Dot for Android lets you send typed or system speech-recognized prompts from your phone to a Dot host signed in on your laptop. The Android app stores an install token locally, lists your online Dot hosts, sends your selected prompt through the Vibe Research event bus, and receives assistant progress and completion events for the conversation.
Voice transcription, AI responses, text-to-speech, and optional connected-service features may be processed through Vibe Research infrastructure and third-party providers used to provide the product.
Dot may ask you to connect Google Workspace features only when you request functionality that needs Google account access, such as reading selected Drive files, checking Calendar availability, creating Calendar events, drafting Gmail messages, or sending Gmail messages.
Dot's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
Dot does not use Google Workspace API data to train generalized AI or machine learning models. Google user data is used only to provide user-requested features that are visible in Dot's product experience.
Dot requests the narrowest practical access for each connected feature. For example, Dot prefers Google Drive file-level creation/access when broad Drive access is not required. Some features, such as searching hidden Gmail or broad Drive content, require more sensitive account access and are only used after you explicitly connect that service.
OAuth tokens for connected services are not written into Dot task folders, prompts, logs, or MCP configuration files. Server-side Google integration tokens are stored by Vibe Research infrastructure in encrypted form. Local integration grants on your Mac record only service, capability, account hint, and consent metadata, not Google OAuth tokens.
Vibe Research keeps account records, install tokens, usage counts, billing and quota records, bounded remote-command event history, and bounded audit summaries for external writes such as sending email or creating calendar events. Dot does not intentionally retain raw screenshots, transcripts, Gmail bodies, Drive file bodies, or model responses as product analytics.
Some data may be retained temporarily by infrastructure logs, security systems, or third-party providers according to their operational policies.
You can revoke Google access from your Google Account permissions page. You can also sign out of Dot from the app or account page. Future Dot releases will expose more detailed per-integration revoke controls inside the app.
For account deletion or privacy requests, contact Vibe Research using the support email shown on the Google OAuth consent screen or the account page.