Privacy Policy

AgentWorks ("we", "us") collects personal data that you voluntarily provide when you create an account, use our services, subscribe to updates, contact support, or otherwise interact with our websites and products. Categories may include:

• Identity and contact data - name, email address, company name, role, and similar professional details.
• Account and authentication data - credentials, workspace identifiers, and security-related metadata required to operate your account.
• Usage and technical data - device type, browser, approximate location derived from IP, log timestamps, pages viewed, and in-product events needed for reliability and abuse prevention.
• Communication content - messages you send to us (e.g. support tickets) and, where applicable, content you choose to process through the platform subject to your configuration and agreements.

We aim to collect only what is adequate, relevant, and limited to what is necessary for the purposes below. Where we rely on consent (for example, certain marketing communications or non-essential cookies), you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.

We use personal data to:

• Provide, operate, and improve the AgentWorks platform (including authentication, billing where applicable, and customer support).
• Maintain security, detect fraud, and enforce acceptable use of our services.
• Comply with legal obligations and respond to lawful requests from public authorities.
• Send service-related notices and, where permitted, product updates; you can opt out of non-essential marketing as described in your account or message footers.
• Analyse aggregated or de-identified usage to understand feature adoption and reliability - not to sell personal data as a standalone product.

Automated decision-making that produces legal or similarly significant effects is not a default part of our public marketing website. If you use AI features inside the product, outcomes depend on your configuration, prompts, and human oversight settings.

We design AgentWorks for teams that care about EU data protection. Primary hosting and storage for production customer data is targeted at infrastructure located in the European Union or otherwise covered by appropriate safeguards (such as Standard Contractual Clauses) when a subprocessors region differs.

Exact locations and subprocessors may evolve; enterprise customers can request an up-to-date list and Data Processing Agreement (DPA) terms as part of contracting. Backup, logging, and support tooling may use additional regions only where contractually permitted and with suitable transfer mechanisms under GDPR Chapter V.

We share personal data only where necessary, with categories such as:

• Infrastructure and hosting providers that run our application, databases, and object storage.
• Authentication, email delivery, analytics, and error-monitoring vendors bound by confidentiality and processing agreements.
• Professional advisers (lawyers, accountants) where required, under professional secrecy or equivalent duties.
• Authorities when we believe disclosure is required by law or to protect rights, safety, and integrity.

We do not sell your personal information in the sense of exchanging it for money with unrelated data brokers. If we engage subprocessors to process personal data on our behalf, they are instructed in writing and may not use data for their own purposes.

Our sites may use cookies and similar technologies (local storage, pixels) for strictly necessary functions (session, security, load balancing), preferences (such as theme), and, where you agree, analytics to improve the product experience.

You can control many cookies through your browser settings. Blocking strictly necessary cookies may impair login or security features. Where EU law requires consent for non-essential cookies, we present a choice before those cookies are set.

If GDPR applies to our processing of your personal data, you may have the following rights, subject to conditions and exceptions in the law:

• Access - obtain confirmation whether we process your data and receive a copy of certain information.
• Rectification - request correction of inaccurate or incomplete data.
• Erasure - request deletion where applicable legal grounds apply (e.g. data no longer necessary).
• Restriction - ask us to limit processing in specific situations.
• Data portability - receive structured, machine-readable data you provided where processing is based on consent or contract and is automated.
• Object - object to processing based on legitimate interests or to direct marketing.
• Withdraw consent - where processing is consent-based, without affecting prior lawful processing.
• Lodge a complaint - with your local supervisory authority.

We may need to verify your identity before fulfilling requests. Some rights may not apply to data we must retain for legal, security, or contractual reasons.

For privacy questions, data subject requests, or DPAs, contact us at [email protected] or via our contact form. We will respond within the timelines required by applicable law, typically within one month for GDPR requests (extensions may apply for complex cases).

If you are an end user of an organization that licenses AgentWorks, that organization may be the controller of your workspace data; we may direct certain requests to them where appropriate.