Privacy Policy

Effective Date: 1st March, 2026

Last Updated: March 26, 2026

This Privacy Policy explains how AgentEngine ("AgentEngine," "we," "us," or "our") collects, uses, discloses, and protects personal data when you visit our website, create an account, use our platform, deploy agents, or interact with AgentEngine-powered experiences.

AgentEngine is an AI platform that helps organizations create, train, manage, and deploy knowledge-backed AI agents through dashboards, APIs, widgets, and integrations.

This policy is intended for:

  • visitors to our website;
  • customers and prospective customers;
  • authorized users of customer accounts; and
  • end users who interact with AI agents deployed through AgentEngine.

1. Who We Are

Legal Entity: Agent Engine Pvt. Ltd.

Product Name: AgentEngine

Contact: helpdesk@agentengine.studio

If you have questions about this Privacy Policy or want to exercise your privacy rights, contact us using the details above.

2. Scope and Roles

AgentEngine may act in different privacy roles depending on the context:

  • When you visit our website, create an account, request a demo, or manage billing, AgentEngine generally acts as a data controller for that information.
  • When customers upload documents, connect data sources, configure agents, or process end-user conversations through the platform, AgentEngine generally acts as a data processor/service provider on behalf of the customer, and the customer is responsible for the lawfulness of that data and for providing any required notices to its end users.

3. Information We Collect

We collect information from the following categories.

A. Account and Contact Information

Information you provide directly to us may include:

  • name;
  • work email address;
  • company or organization name;
  • job title;
  • password or authentication credentials;
  • profile information;
  • records of communications with sales, support, or success teams.

B. Billing and Transaction Information

If you purchase a paid plan, we or our payment providers may collect:

  • billing contact details;
  • subscription plan and billing status;
  • transaction and invoice metadata;
  • payment processor customer and subscription identifiers.

AgentEngine does not necessarily store full payment card details directly; those are typically handled by our payment processor.

C. Customer Content

When you use the platform, we may process data you or your users choose to submit, upload, connect, or generate, including:

  • documents and files uploaded for agent training;
  • website URLs and crawled content;
  • text snippets, FAQs, prompts, and agent instructions;
  • workspace, bot, and integration configuration;
  • chat history and conversation transcripts;
  • feedback, ratings, or corrections submitted through the Service;
  • metadata associated with uploaded content or conversations.

D. End-User Interaction Data

When an end user interacts with an AgentEngine-powered agent, we may process:

  • message content;
  • timestamps;
  • session identifiers;
  • agent or workspace identifiers;
  • approximate technical metadata such as IP-derived network information, browser details, and device information;
  • any personal data voluntarily entered by the end user into the conversation.

E. Automatically Collected Usage and Technical Information

When you use our website or Service, we may automatically collect:

  • IP address;
  • browser type and version;
  • device type and operating system;
  • pages viewed and features used;
  • referring URLs;
  • timestamps and request metadata;
  • logs, diagnostics, crash data, and performance telemetry.

F. Information from Third Parties

We may receive information from:

  • identity providers such as Google, if you sign in using a federated login flow;
  • payment providers;
  • integration partners you connect to the platform;
  • referral, marketing, or sales tools;
  • customer administrators who create or manage your account.

4. How We Use Information

We use personal data to:

  • provide, operate, maintain, and secure AgentEngine;
  • create and administer accounts, workspaces, bots, and permissions;
  • ingest, index, retrieve, and process customer knowledge sources;
  • generate agent responses and support requested workflows;
  • process subscriptions, renewals, payments, and account-related notices;
  • authenticate users and prevent fraud, abuse, spam, or unauthorized access;
  • monitor reliability, debug issues, and improve performance;
  • provide support and respond to inquiries;
  • communicate service updates, security notices, and product information;
  • comply with legal obligations and enforce our terms and policies.

We do not sell personal information.

5. AI and Model Processing

AgentEngine uses retrieval and model-inference workflows to provide the Service. Depending on your configuration, prompts, retrieved context, and conversation data may be processed by model or embedding providers.

Based on the current platform configuration, these providers may include:

  • Google Gemini;
  • Anthropic;
  • other providers you explicitly configure or enable.

We do not use Customer Content to train AgentEngine's own generalized models. Third-party AI providers may process submitted data according to their own terms, product settings, and privacy commitments. Customers are responsible for evaluating the providers they enable for their use case.

6. Cookies and Similar Technologies

We may use cookies, local storage, and similar technologies to:

  • keep users signed in;
  • remember preferences and workspace context;
  • secure sessions;
  • measure product performance and diagnose technical issues;
  • understand usage of our website and Service.

You can manage cookies through your browser settings. Disabling certain cookies may affect core functionality.

7. Legal Bases for Processing

Where applicable under GDPR, UK GDPR, or similar laws, we process personal data under one or more of the following legal bases:

  • performance of a contract;
  • legitimate interests, such as securing and improving the Service;
  • consent;
  • compliance with legal obligations.

8. How We Share Information

We share personal data only when necessary to operate the Service or as otherwise permitted by law. Categories of recipients may include:

  • hosting and infrastructure providers;
  • payment processors;
  • email delivery providers;
  • authentication and identity providers;
  • AI model and embedding providers;
  • analytics, logging, and observability providers;
  • integration partners enabled by the customer;
  • professional advisors, auditors, insurers, and legal counsel;
  • law enforcement or government authorities when required by law.

From the current product stack, service providers used by or configurable within AgentEngine may include:

  • LemonSqueezy for subscription billing;
  • Brevo for transactional email;
  • Google for OAuth and certain AI services;
  • Anthropic for model inference if enabled;
  • Voyage AI for embeddings if enabled;
  • LangSmith for optional tracing/observability if enabled.

We may also disclose information:

  • to enforce our agreements;
  • to protect the rights, safety, and security of AgentEngine, our customers, or others;
  • in connection with a merger, financing, reorganization, acquisition, or sale of assets.

We may publish aggregated or de-identified information that does not reasonably identify an individual.

9. International Data Transfers

AgentEngine may process data in the United States and other jurisdictions where we or our service providers operate.

If you access the Service from outside the United States, your information may be transferred to and processed in countries that may not provide the same level of legal protection as your home jurisdiction.

Where required, we use appropriate safeguards for cross-border transfers, which may include:

  • standard contractual clauses;
  • data processing agreements;
  • contractual and technical protections with vendors.

10. Data Retention

We retain personal data for as long as reasonably necessary for the purposes described in this Policy, including to:

  • provide the Service;
  • maintain account history and billing records;
  • support legitimate business operations;
  • comply with legal, tax, accounting, and regulatory obligations;
  • resolve disputes and enforce agreements.

Retention periods vary depending on the type of data and context:

  • account and billing data may be retained for the duration of the relationship and a reasonable period afterward;
  • logs and telemetry may be retained for shorter operational periods unless needed for security or compliance;
  • customer content and conversation data are generally retained according to customer configuration, account status, and internal retention rules;
  • some uploaded files or archived data may be deleted after platform-defined retention windows or after account termination, unless retention is legally required.

11. Security

We use administrative, technical, and organizational safeguards designed to protect personal data, including measures such as:

  • encryption in transit;
  • access controls and role-based permissions;
  • authentication and secret management;
  • rate limiting and abuse prevention controls;
  • logging, monitoring, and operational alerting;
  • infrastructure isolation for internal services;
  • reasonable measures to restrict unauthorized access to customer data.

No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

12. Customer Responsibilities

Customers are responsible for:

  • ensuring they have the right to provide Customer Content to AgentEngine;
  • giving any notices and obtaining any consents required for end-user data they collect;
  • configuring retention, access, and integrations appropriately for their use case;
  • evaluating whether enabled third-party services meet their legal and compliance requirements.

13. Your Privacy Rights

Depending on your location and applicable law, you may have rights to:

  • access personal data we hold about you;
  • correct inaccurate personal data;
  • delete personal data;
  • restrict or object to processing;
  • request portability of certain data;
  • withdraw consent where processing is based on consent;
  • appeal a denial of a rights request where required by law.

To exercise your rights, contact us at helpdesk@agentengine.studio. We may need to verify your identity before fulfilling your request.

If AgentEngine processes your data on behalf of a customer, we may direct your request to that customer, since they control the relevant processing activity.

14. Children's Privacy

AgentEngine is intended for business use and is not directed to children. We do not knowingly collect personal data from children under 16. If you believe a child has provided personal data through the Service, contact us so we can review and take appropriate action.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in the Service, law, or our data practices.

When we make material changes, we may provide notice by:

  • updating the date at the top of this policy;
  • posting a notice on our website or in the Service; or
  • sending an email or account notification where appropriate.

16. Contact Us

For questions, requests, or complaints, contact:

Agent Engine Pvt. Ltd.

Contact: helpdesk@agentengine.studio

17. Product-Specific Notes

The current AgentEngine platform includes features such as:

  • account registration and authentication;
  • email verification and password reset;
  • workspace and bot management;
  • website crawling, file upload, and text ingestion;
  • retrieval-augmented generation workflows;
  • embedded chat widgets and APIs;
  • subscription billing;
  • optional integrations and observability tooling.

Because the product is evolving, the exact services, integrations, and data flows may change over time. This policy should be reviewed together with your terms of service, any data processing addendum, and your current subprocessors list.