Privacy Policy
Last updated: April 2026
OpsAgent is operated by MSApps. We respect your privacy and only collect what we need to run the service. This page explains what we collect, why, where it lives, and how to reach us.
1. What we collect
- Account data — name, work email, company. Provided by you when you sign up or fill the intake form.
- Operational data — content you ask OpsAgent to process (leads, candidates, invoices, messages). Stored only as long as needed to deliver the workflow.
- Usage data — basic analytics (page views, anonymized session info via Google Analytics) to understand which pages help.
- Cookies — only what's needed for analytics and session continuity.
2. What we don't do
- We don't sell personal data.
- We don't use customer data to train third-party models without explicit opt-in.
- We don't share your data across customers.
3. Where data lives
OpsAgent runs on Google Cloud (primary region: us-central1) and Cloudflare. Subprocessors include Anthropic (Claude API), Google (Cloud Run, Gmail/Calendar), and Netlify (web hosting). Each subprocessor is bound by its own DPA and SOC2/ISO27001 controls.
4. Your rights
You can ask us to access, correct, export, or delete your data at any time. Email privacy@opsagents.agency and we'll respond within 30 days. EU/UK residents have GDPR rights; California residents have CCPA rights — both are honored.
5. Security
OpsAgent follows the SOSA framework — Secure Operations & Safety Assurance. See the SOSA whitepaper for the full controls. TL;DR: least-privilege agent permissions, full audit log of every tool call, encrypted secrets, no plaintext credentials in code.
6. Contact
Questions, requests, or concerns: privacy@opsagents.agency or michal@opsagents.agency.