← Home

Privacy Policy

Last updated: May 3, 2026

JahFeel Automation ("we," "our," or "us") operates Agent HQ and related services. We are committed to protecting your privacy. This policy explains what information we collect, how we use it, who we share it with, how we disclose it, and the security practices we use to safeguard it.

1. Information We Collect

Information you provide directly:

• Account information: your name and email address when you register
• Payment information: credit card and billing details, collected and processed by Stripe. We do not store your full card number on our servers.
• Communications: messages, prompts, and content you send through our AI agents and platform features
• Support requests: any information you provide when contacting us for help

Information collected automatically:

• Usage data: features you use, actions you take, timestamps, and session duration
• Device information: browser type and operating system (from standard HTTP request headers)
• Log data: IP address, access times, pages viewed, and referring URLs
• Cookies: session cookies to keep you logged in and remember your preferences
• Diagnostic data: system health metrics and error logs from your environment, used to proactively resolve issues. Does not include message content or files.

AI interaction data:

• Agent conversations: messages you send to and receive from AI agents on our platform are processed by third-party AI providers (see Section 4) to generate responses. These conversations may be stored to maintain context and improve your experience.

Connected app data:

• When you connect third-party apps, our integration partner accesses data from those apps on your agent's behalf (emails, calendar events, etc.) only as needed for automations you configure.

2. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain our services
• Process payments and manage your subscription through Stripe
• Send service-related notifications (billing confirmations, security alerts, feature updates)
• Process your messages through AI providers to deliver agent responses
• Improve and optimize our platform based on usage patterns
• Detect, investigate, and prevent fraud, abuse, or security incidents
• Comply with legal obligations

We do not sell, rent, or trade your personal information. We do not display advertising on our platform or share your data with advertisers.

3. Who We Share Your Information With

We share data with trusted third-party service providers who help us operate the platform, including: our payment processor (Stripe — PCI-DSS Level 1 certified), our AI processing partners, our integration management partner (SOC 2 Type 2 compliant), and our cloud infrastructure providers. We share only the minimum data each provider needs. We do not share your data with advertisers or sell it to anyone.

We do not share your data with any other third parties unless required by law (such as a valid court order or subpoena).

4. Method of Disclosure

When we share your information with the parties listed above, we do so through the following methods:

• Encrypted API calls: all data transmitted to Stripe, OpenRouter, and other service providers is sent over HTTPS (TLS 1.2 or higher), ensuring encryption in transit
• Secure server-to-server communication: our backend communicates with third-party services using authenticated API keys, never exposing credentials to your browser
• Minimal data sharing: we send only the data necessary for each service to function. For example, OpenRouter receives your message text but not your payment information; Stripe receives your billing details but not your AI conversations.

5. Security Practices

We implement the following measures to protect your information:

• Encryption in transit: all connections to our platform use HTTPS/TLS encryption
• Encryption at rest: sensitive credentials (API keys, OAuth tokens) stored on our servers are encrypted using AES-256 encryption
• Payment security: payment processing is handled entirely by Stripe, which is PCI-DSS Level 1 certified. We never store, process, or transmit full credit card numbers on our own servers.
• Access controls: access to user data is restricted to authorized systems and personnel only
• Regular updates: we keep our software and dependencies up to date to address known vulnerabilities
• Input validation: we validate and sanitize all user inputs to prevent injection attacks
• Monitoring: we monitor our systems for suspicious activity and unauthorized access attempts
• Container isolation: each customer's data is stored in a dedicated, isolated environment, physically separated from all other customers.

While we take reasonable measures to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Your Rights

You have the right to:

• Access the personal data we hold about you
• Correct inaccurate or incomplete data
• Delete your account and associated data
• Export your data in a portable format
• Opt out of non-essential communications

To exercise any of these rights, contact us at support@jahfeelautomation.com. We will respond within 30 days.

7. Cookies

We use essential cookies only:

• Session cookies: to keep you logged in while using the platform
• Preference cookies: to remember your settings and preferences

We do not use advertising cookies, tracking pixels, or third-party analytics cookies. You can disable cookies in your browser settings, but some features may not function properly without them.

8. Data Retention

We retain your data for as long as your account is active or as needed to provide our services. When you delete your account, we will remove your personal data within 30 days, except where retention is required by law (such as financial records required for tax purposes).

Connected app credentials are revoked through our integration partner when you disconnect an app or delete your account.

9. Children's Privacy

Our service is not intended for users under 18 years of age. We do not knowingly collect personal information from minors. If you believe a minor has provided us with personal information, please contact us and we will promptly delete it.

9.5 California Residents

If you are a California resident, you have rights under the CCPA including the right to know what we collect, delete your data, and opt out of data sales. We do not sell personal information. Contact support@jahfeelautomation.com.

9.6 International Users

If you are in the EEA or UK, you have rights under GDPR including access, rectification, erasure, and portability. Contact support@jahfeelautomation.com.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will notify you via email or through a notice on our platform. The "Last updated" date at the top of this page indicates the most recent revision.

11. Contact Us

If you have questions about this Privacy Policy, want to exercise your data rights, or have concerns about how your information is handled, contact us at:
Email: support@jahfeelautomation.com