Account information: Name, email address, and password hash when you create an account.
Workspace content: Messages, documents, tasks, database records, and files you create within the Service. This content is stored to provide the Service and is owned by you.
Usage data: AI credit consumption, feature usage patterns, login activity, and performance metrics. This data is used to operate the Service and improve reliability.
Payment information: Payment details are processed by Stripe and are not stored on our servers. We retain only your Stripe customer ID and subscription status.
We use your information to: (a) provide and maintain the Service; (b) process payments; (c) send transactional emails (password resets, billing alerts, security notices); (d) enforce plan limits and track usage; (e) improve the Service using aggregated, anonymized data.
We do not sell your personal information. We do not use your workspace content to train AI models.
When you use AI agent features, your messages and relevant workspace context are sent to our AI provider (Anthropic) for processing. This data is used solely to generate agent responses and is not retained by the AI provider for training purposes. Connector-based tools (web search, GitHub, etc.) may share limited data with third-party APIs as needed to fulfill your request.
Your data is stored in PostgreSQL databases hosted on secure infrastructure. All data is encrypted in transit (TLS) and sensitive credentials are encrypted at rest. We implement access controls, audit logging, and regular security reviews to protect your data.
We retain your data for as long as your account is active. On the Starter plan, message history is retained for 90 days. On paid plans, all data is retained indefinitely. When you delete your account or workspace, we will delete your data within 30 days, except where retention is required by law.
We use the following third-party services that may process your data:
Each third-party service is governed by its own privacy policy.
You may: (a) access and export your data at any time; (b) correct inaccurate information in your profile; (c) delete your account and associated data; (d) opt out of non-essential communications. For data access or deletion requests, contact us at the address below.
We use essential cookies for authentication and session management. We do not use tracking cookies or third-party analytics cookies. No cookie consent banner is required as we only use strictly necessary cookies.
We may update this policy from time to time. We will notify you of material changes via email. The "last updated" date at the top reflects the most recent revision.
For privacy-related questions or data requests, contact us at [email protected].