Trust Center

Privacy & Data Protection

Transparent data practices with GDPR-first privacy controls

Full GDPR Compliance • Zero Data Selling • User Rights Guaranteed

Our Privacy Principles

Built on transparency, user control, and minimal data collection

Privacy by Design

Privacy controls are built into every feature from the ground up, not added as an afterthought.

Data Minimization

We only collect data necessary to provide our services. No unnecessary tracking or profiling.

User Control

You own your data. Export, delete, or restrict processing at any time through our dashboard.

Data Processing Practices

What Data We Collect

Account Information

• Email address (required for login)
• Name and company details (optional)
• Authentication credentials (securely hashed)

Usage Data

• Feature usage and interaction patterns
• API calls and agent execution logs
• Performance metrics (anonymized)

AI Processing Data

• Agent prompts and responses (stored only with explicit consent)
• Workflow configurations and execution history
• Integration credentials (encrypted at rest)

How We Use Your Data

Service Delivery: To provide AI agent functionality and platform features
Performance Optimization: To improve response times and system reliability
Security: To detect and prevent fraud, abuse, and security incidents
Support: To respond to your questions and technical issues

Data Retention

Active Account Data: Retained while your account is active and for a reasonable period afterward to allow reactivation.

Audit Logs: Retained for 90 days (Enterprise plans: up to 2 years for compliance).

AI Processing Data: Automatically deleted after 30 days unless you configure longer retention.

Deleted Accounts: All personal data permanently deleted within 30 days of account deletion request.

Your Data Rights (GDPR)

Exercise your rights under GDPR Articles 15-22

Right to Access

Request a copy of all personal data we hold about you

Right to Portability

Download your data in a machine-readable format (JSON, CSV)

Right to Erasure

Request deletion of your personal data ("right to be forgotten")

Right to Restrict Processing

Limit how we process your data while maintaining your account

How to Exercise Your Rights: All data rights can be exercised through your account dashboard or by contacting our Data Protection Officer at [email protected]. We will respond within 30 days as required by GDPR.

Third-Party Data Sharing

✓ What We Don't Do

We never sell your data to third parties
We don't use your data for advertising
We don't share data with data brokers

Limited Sharing Scenarios

We only share data in these specific circumstances:

• Service Providers: Essential infrastructure (hosting, email, payments) under strict data processing agreements
• AI Model Providers: Only when you explicitly use third-party LLM integrations (OpenAI, Anthropic, etc.)
• Integrations: When you connect third-party services (Salesforce, Jira, etc.) per your configuration
• Legal Requirements: When required by law or to protect our legal rights

View our complete subprocessor list →

Privacy Questions?

Contact our Data Protection Officer for privacy-related inquiries or to exercise your data rights.

Contact Privacy Team Full Privacy Policy