Privacy policy

AgentPay is operated by AgentPay (operated by an individual proprietor). We provide payment-control infrastructure for autonomous AI agents — virtual prepaid wallets governed by a policy engine, with full transaction logging and anomaly alerting.

This policy describes how we collect, use, and protect personal data and account data when you use AgentPay via our website, API, and dashboard.

We collect:

• Account data: email address, password (hashed), and any name you provide. Authentication is handled by Supabase.
• Wallet and policy data: the names, budgets, vendor allowlists, and per-transaction caps you configure for each agent wallet. API keys are stored as one-way SHA-256 hashes — we cannot recover them; you rotate to invalidate.
• Transaction metadata: for each charge an agent makes, we store the vendor, amount, status (approved/denied), policy matched, idempotency key, and any free-form metadata you choose to attach. We do not store payment instruments — those are handled by Stripe.
• Anomaly events: derived signals (velocity, novelty, value thresholds) generated from your transaction stream.
• Billing data: Stripe customer IDs and subscription status. We do not store full card details — those are tokenized by Stripe.
• Operational logs: request timestamps, IP addresses for the dashboard, and error traces. We retain these for up to 30 days for abuse prevention and debugging.

We use the data above only to operate the service: authenticate you, enforce the policies you've configured, deliver alerts, bill you, prevent abuse, and improve the product. We do not sell your data, and we don't use it to train third-party AI models.

To provide the service, we share necessary data with:

• Vercel Inc. — hosting and CDN.
• Supabase Inc. — managed Postgres database and authentication.
• Resend.com Inc. — transactional email delivery (verification, password reset, anomaly alerts).
• Stripe, Inc. — billing and subscription management. Stripe receives the data necessary to process payments.

We do not sell personal information. We share only what is required for each sub-processor to perform its function.

All data in transit is encrypted with TLS. API keys are stored as SHA-256 hashes and compared with timing-safe equality. Webhook payloads are signed with HMAC-SHA256 using a per-endpoint secret. Database access is gated by row-level security (RLS) policies enforced server-side — you can never see another customer's wallets or transactions even with a valid session token.

Account, wallet, and transaction data are retained while your account is active. You can delete your account at any time from settings; deletion cascades to all wallets, transactions, and webhooks. Operational logs (IP, request traces) are retained for up to 30 days. Billing records may be retained longer where required by tax or accounting law (typically 7 years).

You have the right to access, correct, export, and delete your personal data, and to object to processing or withdraw consent. To exercise any of these, email hello@agentpay.run from the email associated with your account.

If you're in the EEA, UK, or California, you also have rights under GDPR, UK GDPR, and CCPA respectively. We respond to verified requests within 30 days.

We use a single first-party session cookie set by Supabase Auth. We do not use advertising cookies, third-party analytics that track you across the web, or cross-site tracking pixels.

AgentPay is not directed at children under 13 (or under 16 in the EEA). We do not knowingly collect personal data from children.

We may update this policy. Material changes will be announced by email to your account address at least 30 days before they take effect.

Questions or requests under this policy: hello@agentpay.run.