Privacy & Data Protection

Privacy Policy

Last updated: 4/2/2026

Overview

Agentman ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI agent platform and related services.

Information We Collect

Information You Provide

  • Account information (name, email, business details)
  • Payment information
  • Store and product data
  • Customer service communications
  • Agent configurations and customizations

Information Automatically Collected

  • Usage data and analytics
  • Log files and device information
  • Cookies and tracking technologies
  • Performance metrics
  • API usage statistics

Conversation Data

We collect and store:

  • Chat conversations between users and AI agents
  • User inputs and queries
  • Agent responses and actions
  • Conversation metadata (timestamps, session info)
  • Generated content and outputs

Conversation data is used to:

  • Improve agent performance for the user
  • Provide chat history access
  • Debug and optimize services
  • Generate analytics

Google API Data

Data obtained through Google APIs (including Gmail and Google Tasks) is used solely to provide and improve user-facing features of our application. Google user data is not used to train or improve AI/ML models, serve advertising, or for any purpose unrelated to delivering our services to you. Our use of Google user data complies with the Google API Services User Data Policy, including the Limited Use requirements.

Retention and Access:

  • Conversation history retention varies by plan type
  • Refer to your subscription plan details for specific retention periods
  • You can export your conversation data anytime within the retention period

How We Use Your Information

  • Provide and maintain our services
  • Process transactions
  • Improve and personalize your experience with our services
  • Analyze usage patterns
  • Send service updates
  • Respond to support requests
  • Prevent fraud and abuse

HIPAA Compliance

Agentman is fully HIPAA compliant. We maintain administrative, physical, and technical safeguards required under the Health Insurance Portability and Accountability Act (HIPAA) to protect Protected Health Information (PHI).

Business Associate Agreements (BAAs)

We execute Business Associate Agreements with all covered entities and subcontractors before accessing, processing, or storing PHI. Our BAAs outline the permitted uses and disclosures of PHI, breach notification obligations, and the safeguards we maintain.

Protected Health Information (PHI) Handling

  • PHI is encrypted in transit (TLS 1.2+) and at rest (AES-256)
  • Access to PHI is restricted to authorized personnel on a minimum-necessary basis
  • All PHI access is logged and auditable
  • PHI is never used for marketing, analytics, or model training
  • PHI is retained only as long as required by the applicable BAA and applicable law, and is securely disposed of thereafter

Healthcare-Specific Data Protections

  • Role-based access controls (RBAC) scoped to individual practice and user level
  • Complete audit trails for every agent action involving patient data
  • Breach notification procedures compliant with HIPAA Breach Notification Rule (45 CFR Part 164, Subpart D)
  • Regular HIPAA risk assessments and remediation
  • Workforce training on PHI handling and privacy practices
  • Dedicated security incident response for healthcare data

Data Storage and Security

We implement industry-standard security measures to protect your information:

  • Encryption in transit and at rest
  • Regular security audits
  • Access controls
  • Secure data centers
  • Incident response procedures

Data Sharing and Disclosure

We may share your information with:

  • Service providers and partners
  • Legal authorities when required by law
  • Third parties with your explicit consent
  • Affiliated companies as part of our services

We do not sell your personal information.

Your Rights and Choices

You have the right to:

  • Access your personal information
  • Correct inaccurate data
  • Request deletion of your data
  • Opt-out of marketing communications
  • Export your data
  • Restrict processing of your information

Children's Privacy

Our services are not intended for users under 16. We do not knowingly collect information from children.

International Data Transfers

We may transfer data internationally with appropriate safeguards and compliance with applicable laws.

Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through our platform.

Contact Us

For privacy-related questions or concerns:
Email: privacy@agentman.ai
Address: Berkeley, CA, USA

California Privacy Rights

California residents have additional rights under CCPA. Contact us for more information about exercising these rights.