Last updated: June 2025
AgentCloud is committed to the security and privacy of your data and infrastructure. This policy explains what we collect, how we use it, and your rights as a developer or enterprise customer.
When you use AgentCloud, we collect information you provide and data generated through your use of our cloud-native AI agent infrastructure.
Account Information: We collect your name, email address, company name, and billing details when you register. This information is required to provision your infrastructure and manage your subscription.
Usage & Telemetry Data: AgentCloud logs agent execution metrics, API call volumes, integration activity, error rates, and resource consumption. This telemetry data is used for billing, performance monitoring, and platform optimization.
Technical Data: We collect IP addresses, SDK versions, runtime environments, and request metadata to support debugging and platform reliability.
Integration Data: When you configure integrations with external services, we process authentication tokens and API credentials required to execute agent workflows. Credentials are encrypted at rest and never exposed in logs.
Conversation & Workflow Data: Inputs, outputs, and intermediate states of agent workflows are logged for debugging and auditing purposes. Retention periods are configurable for enterprise accounts.
AgentCloud uses your data to operate, improve, and scale our cloud AI agent platform.
Infrastructure Delivery: We use account and telemetry data to provision compute resources, scale agent infrastructure, route API requests, and deliver outputs.
Billing & Metering: Usage data drives our consumption-based billing. Detailed usage records are available in your dashboard.
Platform Reliability: We analyze error rates, latency patterns, and failure modes to improve uptime and performance across our infrastructure.
Security Monitoring: We continuously monitor for anomalous access patterns, API abuse, credential leaks, and unauthorized infrastructure usage.
Product Development: Aggregated, de-identified metrics inform our roadmap — which agent types perform best, which integrations need improvement, and where latency can be reduced.
We do not sell your data. Sharing is limited to the following:
Cloud Infrastructure Providers: AgentCloud operates on major cloud providers (AWS, GCP, Azure) under appropriate data processing agreements. Your data may be processed on infrastructure in the US and EU, depending on your selected region.
Integration Services: Agent workflows that connect to third-party APIs share the minimum required data to complete those integrations. You control which integrations are enabled.
Legal Compliance: We disclose data when required by law or to protect the security of our platform and users.
Business Transfers: In a merger or acquisition, data may transfer to a successor entity with appropriate user notification.
Enterprise customers may negotiate additional data handling restrictions through a custom Data Processing Agreement (DPA).
Security is foundational to AgentCloud's architecture. We are built for developers and enterprises who require enterprise-grade data protection.
All API communications are encrypted with TLS 1.3. Data at rest uses AES-256. Secrets and API credentials are stored in hardware-backed key management systems and never appear in plaintext logs.
Our infrastructure is deployed in SOC 2 Type II certified environments. We conduct regular penetration tests and vulnerability assessments. We maintain a formal incident response plan and will notify affected customers of security incidents within 72 hours as required by applicable law.
Customer agent data is isolated at the account level. Multi-tenant workloads use namespace-level separation with no cross-tenant data access.
The AgentCloud dashboard uses cookies for authentication and session management.
Essential Cookies: Required for login, API token management, and dashboard functionality.
Analytics Cookies: Help us understand how the dashboard is used. We use privacy-focused tools that do not send data to advertising networks.
For API-only integrations, cookies are not used. Authentication is handled via API keys and OAuth tokens managed through your developer settings.
Depending on your location, you have the following rights regarding your data:
Access: Request a copy of your account data and usage records.
Correction: Request corrections to inaccurate account information.
Deletion: Request deletion of your data. Infrastructure logs may be retained for a limited period for security auditing purposes.
Portability: Export your configuration, workflow definitions, and usage data in standard formats via our API.
Restriction: Request that we restrict processing of your data under certain circumstances.
Submit data rights requests to privacy@agentcloud.io. We respond within 30 days. Enterprise customers should coordinate requests with their account team.
For privacy questions, data requests, or DPA inquiries:
Email: privacy@agentcloud.io Security: security@agentcloud.io Enterprise DPA: enterprise@agentcloud.io
This policy was last updated June 2025. We will notify customers of material changes via email and in-platform announcements with at least 14 days' notice.