Privacy Policy

Last updated: 9 March 2026  ·  Governing law: Victoria, Australia

This Privacy Policy describes how EasyAgents ("we", "us", "our") collects, uses, stores, and shares personal information when you use our platform ("the Service"). We are committed to protecting your privacy in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Where applicable we also aim to comply with the EU General Data Protection Regulation (GDPR).

1. What Personal Information We Collect

CategoryExamplesWhy collected
Account data Email address, hashed password, account creation date Identity, authentication, and account management
Billing data Wallet balance, transaction amounts and timestamps, payment gateway references Credit billing, refunds, fraud prevention
Usage data AI queries, token counts, project names, autopilot run logs Service delivery, billing calculation, debugging
Technical data IP address, browser type, page visit timestamps Security, rate limiting, analytics
Communications Support chat messages, feedback submissions, support tickets Customer support

We do not store full payment card details. Card processing is handled directly by our payment processors (see section 5).

2. How We Use Your Information

  • To provide, operate, and improve the Service.
  • To process payments and manage your credit wallet.
  • To send transactional emails (account confirmation, payment receipts, low-balance warnings, subscription notifications).
  • To detect and prevent fraud, abuse, or security incidents.
  • To comply with legal obligations.
  • To send service announcements and updates (you may opt out in account settings).

We do not sell your personal information to third parties, nor do we use your project code or AI prompts to train AI models.

3. Cookies & Tracking

We use strictly necessary cookies for authentication session management and security (CSRF tokens). We also use a cookie preference cookie (cookie_consent) to remember your choice. We do not use third-party advertising or tracking cookies. Analytics are performed using server-side page-view logging only — no client-side analytics scripts are loaded.

You can control cookies through your browser settings; disabling session cookies will prevent you from logging in.

4. Data Storage & Security

Your data is stored on servers controlled by the Service operator. We implement industry-standard security measures including encryption in transit (TLS), hashed password storage (ASP.NET Core Identity), rate limiting, and security headers.

No method of transmission over the internet is 100% secure. While we take all reasonable steps to protect your data, we cannot guarantee absolute security.

5. Third-Party Services

  • Stripe — payment processing. Stripe may collect and process your card data when you make a payment. See Stripe's Privacy Policy.
  • Braintree (PayPal) — payment processing. See Braintree's Privacy Policy.
  • AI model providers — AI queries may be forwarded to OpenRouter, Anthropic, Google, Ollama, or OpenClaw depending on your gateway settings. These providers have their own privacy policies; please review them before submitting sensitive information.
  • Error monitoring — we may use Sentry for crash reporting. Error payloads are sanitised to remove personal data before transmission.

6. Data Retention

  • Account data is retained while your account is active and for 30 days after account deletion.
  • Billing transaction records are retained for 7 years to comply with Australian financial record-keeping requirements.
  • AI usage logs (token counts, timestamps) are retained for 12 months.
  • Support chat messages are retained for 24 months.

7. Your Rights

Under Australian Privacy Principles and where applicable the GDPR you have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate or incomplete information.
  • Delete your account and associated personal data (subject to legal retention requirements).
  • Portability — request an export of your account data in a machine-readable format.
  • Object to processing for marketing purposes and withdraw your consent at any time.

To exercise any of these rights, contact us via the support chat or the feedback form. We will respond within 30 days.

8. Children's Privacy

The Service is not intended for use by persons under 18 years of age. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us immediately.

9. International Transfers

If you access the Service from outside Australia, your data may be transferred to and processed in Australia. By using the Service you consent to this transfer. When AI queries are routed through cloud providers, data may be processed in data centres globally.

10. Changes to This Policy

We may update this policy from time to time. We will notify registered users by email at least 14 days before material changes take effect. The current version is always available at /privacy.

11. Contact & Complaints

For privacy questions or complaints, contact us via the support chat or the feedback form. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

Rejoining the server...

Rejoin failed... trying again in seconds.

Failed to rejoin.
Please retry or reload the page.

The session has been paused by the server.

Failed to resume the session.
Please retry or reload the page.