Privacy Policy

Your Privacy Matters

Privacy Policy

Last Updated: January 1, 2025

Introduction

At Agiflow Inc. ("Agiflow," "we," "us," or "our"), we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-native project management platform and related services (collectively, the "Service").

By using Agiflow, you consent to the data practices described in this policy. If you do not agree with our policies and practices, please do not use our Service.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Name, email address, password, and profile details
  • Payment Information: Billing details, payment card information (processed by our payment providers)
  • Project Data: AI projects, agent configurations, workflows, and related content you create
  • Communications: Support requests, feedback, and correspondence with us

1.2 Information Collected Automatically

  • Usage Data: Features used, actions taken, time spent, and performance metrics
  • Device Information: IP address, browser type, operating system, device identifiers
  • Cookies and Tracking: Session cookies, preference cookies, and analytics cookies
  • AI Usage Metrics: Agent performance, MCP tool usage, API consumption patterns

1.3 Information from Third Parties

  • OAuth Providers: Profile information from Google, GitHub, or other authentication providers
  • AI Service Providers: Usage data from integrated AI services (Claude, OpenAI, etc.)
  • Analytics Services: Aggregated insights about Service usage

2. How We Use Your Information

We use the collected information for the following purposes:

2.1 Service Delivery

  • Provide, maintain, and improve the Agiflow platform
  • Process and manage your AI projects and workflows
  • Track and optimize AI agent performance
  • Monitor and report on API usage and costs
  • Persist project context across sessions

2.2 Account Management

  • Create and manage your account
  • Process payments and subscriptions
  • Provide customer support
  • Send service-related notifications

2.3 Improvement and Development

  • Analyze usage patterns to improve features
  • Develop new functionality and services
  • Conduct research and analytics
  • Personalize your experience

2.4 Legal and Security

  • Comply with legal obligations
  • Detect and prevent fraud or abuse
  • Enforce our Terms and Conditions
  • Protect rights and safety of users

3. How We Share Your Information

We do not sell, trade, or rent your personal information. We may share your information in the following situations:

3.1 Service Providers

We share data with trusted third-party service providers who assist us in operating our platform:

  • Cloud infrastructure providers (AWS, Cloudflare)
  • Payment processors (Stripe)
  • Analytics services (PostHog)
  • Customer support tools
  • AI service providers (for integrated AI features)

3.2 Legal Requirements

We may disclose information when required by law, court order, or government request, or when we believe disclosure is necessary to protect our rights, prevent fraud, or ensure user safety.

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the successor entity.

3.4 Aggregated Data

We may share aggregated, anonymized data that does not identify you personally for research, marketing, or other purposes.

4. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: Data encrypted in transit (TLS/SSL) and at rest
  • Access Controls: Role-based access and authentication requirements
  • Infrastructure: Secure cloud infrastructure with regular security audits
  • Monitoring: Continuous monitoring for security threats and vulnerabilities
  • Incident Response: Established procedures for security incident handling
  • Employee Training: Regular security awareness training for our team

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security but commit to promptly notifying you of any data breaches as required by law.

5. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this policy:

  • Account Data: Retained while your account is active
  • Project Data: Retained according to your subscription plan limits
  • Payment Records: Retained as required for tax and accounting purposes (typically 7 years)
  • Analytics Data: Aggregated data retained for up to 2 years
  • Backup Data: Retained in secure backups for up to 90 days after deletion

Upon account deletion, we will delete or anonymize your personal information, except where retention is required by law or legitimate business purposes.

6. Your Rights and Choices

You have the following rights regarding your information:

6.1 Access and Portability

Request access to your personal information and receive it in a portable format.

6.2 Correction

Update or correct inaccurate information through your account settings or by contacting us.

6.3 Deletion

Request deletion of your account and personal information, subject to legal requirements.

6.4 Opt-Out

Opt out of marketing communications by clicking "unsubscribe" in emails or updating preferences.

6.5 Cookie Preferences

Manage cookie preferences through your browser settings or our cookie consent tool.

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

7. International Data Transfers

Agiflow operates globally. Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have different data protection laws than your jurisdiction.

We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses and adherence to privacy frameworks where applicable.

8. Children's Privacy

Agiflow is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we discover we have collected information from a child under 18, we will promptly delete it. If you believe we have information about a child, please contact us at [email protected].

9. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information we collect, use, and share
  • Right to delete personal information (with exceptions)
  • Right to opt-out of the sale of personal information (we do not sell your data)
  • Right to non-discrimination for exercising privacy rights

To exercise these rights, California residents can contact us at [email protected] or call 1-800-XXX-XXXX.

10. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • Legal Basis: We process data based on consent, contract, legitimate interests, or legal obligations
  • Data Portability: Receive your data in a structured, machine-readable format
  • Restriction: Request restriction of processing in certain circumstances
  • Objection: Object to processing based on legitimate interests
  • Automated Decision-Making: Right not to be subject to solely automated decisions
  • Supervisory Authority: Right to lodge complaints with data protection authorities

11. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

  • Posting the updated policy with a new "Last Updated" date
  • Sending an email notification to registered users
  • Displaying a prominent notice in the Service

Your continued use of Agiflow after changes indicates acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: [email protected]

Data Protection Officer: [email protected]

Mailing Address:

Agiflow Inc.
Attn: Privacy Team
123 Innovation Drive
San Francisco, CA 94105
United States

Phone: 1-800-XXX-XXXX

For EU residents, our EU representative is:
[EU Representative Details - To be added]

Thank you for trusting Agiflow with your information. We are committed to protecting your privacy and providing transparency about our data practices.