Privacy Policy

1. Information We Collect

SoyAgent is designed with a "Privacy-First" architecture. We prioritize transparency in data handling.

• Account Information: If you use our hosted services, we collect your email address and basic profile information.
• Connection Metadata: We store metadata about the SaaS tools you connect (e.g., Notion, Gmail) to facilitate the Secret Injection Proxy.
• Audit Logs: By default, audit logs are stored locally in your SQLite database. If you use Enterprise features, these may be forwarded to your own storage.

2. Zero-Knowledge Credentials

Our primary security innovation is that we do not store your raw credentials in our database. All API keys and OAuth tokens are stored in an encrypted vault and are only accessible through our hardware-backed Secret Injection Proxy. The AI agent runtime never has access to these keys.

3. Data Usage

We use the information we collect to:

• Provide and maintain the SoyAgent service.
• Ensure the security and integrity of your autonomous agendas.
• Comply with legal obligations and security audits.

4. Your Rights

You have full control over your data. If you are using our hosted version, you may request the deletion of your account and metadata at any time.