Privacy Policy
Last updated: February 2026
Overview
Conduity (“we”, “us”, “our”) operates the conduity.com website and the Conduity platform. This policy describes how we collect, use, and protect your information.
Information We Collect
Account Information
When you create an account, we collect your name, email address, and authentication credentials (managed by our auth provider, Clerk).
Workspace Data
We store the data you create within the platform: agent configurations, conversations, memory entries, documents uploaded to the knowledge base, automation configurations, and integration credentials.
Integration Credentials
When you connect third-party services (Google, GitHub, Linear, Figma, Notion), we store OAuth tokens or API keys. All credentials are encrypted at rest using AES-256-GCM.
Usage Data
We collect anonymized usage metrics: message counts, feature usage, and error rates. We do not read or analyze the content of your conversations beyond what is necessary to provide the service (e.g., sending messages to AI model providers).
Cookies
We use essential cookies for authentication and session management. We do not use advertising or tracking cookies.
How We Use Your Information
- To provide the service: Processing messages, executing automations, and maintaining integrations.
- To improve the product: Anonymized usage data helps us identify bugs and prioritize features.
- To communicate with you: Account notifications, billing alerts, and product updates. You can opt out of non-essential communications.
Third-Party Services
We share data with these providers as necessary to operate:
| Provider | Purpose | Data Shared |
|---|---|---|
| AI model providers (Anthropic, OpenAI, Google) | Processing agent messages | Conversation content (BYOK customers: routed through their own API key) |
| Stripe | Billing | Payment information |
| Clerk | Authentication | Name, email |
| Vercel | Hosting | Request logs |
| Upstash | Caching, rate limiting | Session tokens |
| Neon | Database | All workspace data (encrypted) |
We do not sell your data to third parties.
Data Retention
- Active accounts: Data is retained as long as your account is active.
- Deleted accounts: We delete all workspace data within 30 days of account deletion.
- Conversations: You can delete individual conversations, memories, and documents at any time from the dashboard.
Security
- All data is encrypted in transit (TLS 1.2+) and at rest.
- Integration credentials are encrypted with AES-256-GCM.
- We enforce rate limiting and audit logging on all API endpoints.
- Infrastructure is hosted on Vercel and Neon with SOC 2 compliance.
Your Rights
You have the right to:
- Access your data (exportable from the dashboard)
- Correct inaccurate data
- Delete your account and all associated data
- Object to processing for non-essential purposes
For data requests, contact privacy@conduity.com.
Changes
We may update this policy. Significant changes will be communicated via email or an in-app notification. Continued use after changes constitutes acceptance.
Contact
For privacy questions: privacy@conduity.com