Privacy Policy

• Provide, maintain, and improve the Service
• Create and manage your account, companies, and AI agent workspaces
• Process transactions, manage subscriptions, and track credit usage
• Power AI agent operations, including sending your prompts and company data to third-party AI model providers for processing
• Deploy and host applications built by your AI agents on third-party infrastructure
• Send transactional emails (account verification, billing receipts, low-balance alerts)
• Respond to support requests and communicate with you
• Detect, prevent, and address security issues and abuse
• Analyze usage patterns to improve the platform (in aggregate, non-personally-identifiable form)

We do not sell your personal information. We may share your information with:

• Service providers: third-party companies that help us operate the platform, including providers for authentication, cloud hosting, payment processing, AI processing, email delivery, and database services.
• AI model providers: content you provide (company descriptions, chat messages, task details) is sent to third-party AI model providers for processing. Their use of this data is governed by their own privacy policies and data processing terms.
• Team members: information within a company workspace is accessible to other members of that workspace based on their role and permissions.
• Legal requirements: when required by law, court order, or governmental authority, or when we believe disclosure is necessary to protect our rights or safety.
• Business transfers: in connection with a merger, acquisition, or sale of assets, your information may be transferred as a business asset.

• AI agents operate on data you provide (business ideas, plans, tasks). This data is sent to third-party AI providers for processing.
• Files, code, and content generated by AI agents are stored in your company workspace and are accessible to workspace members.
• Applications deployed by agents are hosted on third-party infrastructure and may be publicly accessible at your chosen subdomain.
• We do not use your company-specific data to train AI models. Our AI providers' data practices are governed by their own policies.

• Your data is stored on secure cloud servers located in the European Union.
• We implement industry-standard security measures including encryption in transit (TLS), role-based access controls, and secure authentication.
• Payment information is processed and stored by Stripe in compliance with PCI DSS standards. We do not store full payment card details.
• While we strive to protect your information, no method of electronic transmission or storage is 100% secure.

• Account data is retained for as long as your account is active or as needed to provide the Service.
• Company workspaces and associated data (agent files, chat history, deployed apps) are retained until you archive or delete the company.
• Credit transaction history and billing records are retained as required for accounting and legal purposes.
• You may request deletion of your account and associated data by contacting us at hello@madmantra.com.

• Access and portability: you can access your account data and export company data at any time through your workspace settings.
• Correction: you can update your account information through your profile settings.
• Deletion: you can request deletion of your account by contacting hello@madmantra.com.
• Cookie preferences: you can manage cookie preferences through your browser settings.
• Marketing communications: you can opt out of promotional emails by clicking "unsubscribe" in any marketing email.

If you are a resident of the European Economic Area (EEA), United Kingdom, or California, you may have additional rights under GDPR or CCPA. Contact us at hello@madmantra.com to exercise these rights.

The Service is not intended for children under the age of 16. We do not knowingly collect personal information from children under 16. If we learn that we have collected information from a child under 16, we will take steps to delete it promptly.

Your information may be transferred to and processed in countries other than your country of residence. We primarily store data within the European Union. Where transfers outside the EU are necessary (e.g., to third-party service providers), we ensure appropriate safeguards are in place in accordance with applicable data protection laws.

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy or our data practices, contact us at: