This Privacy Policy describes how Robots Center, Inc. ("Company", "we", "us", or "our") collects, uses, and protects information in connection with the Robots Center platform (the "Service"). By using the Service, you consent to the practices described herein.

Information We Collect

Account information

Email address, name, workspace name, and agent name provided during registration.

Operational data

Traces, events, eval results, command payloads, and workflow configurations you submit through the API or web interface.

Usage metadata

API request patterns, feature usage, error rates, and performance telemetry collected automatically during Service operation.

Device and session data

Browser type, IP address, session cookies, and WebSocket connection metadata for security and performance monitoring.

How We Use Your Information

Providing, maintaining, and improving the Service
Processing API requests and delivering webhook notifications
Monitoring platform health, detecting abuse, and enforcing rate limits
Communicating about your account, billing, and service updates
Complying with legal obligations and resolving disputes

Data Storage and Security

TLS 1.3

All data in transit is encrypted using TLS 1.3. API requests, webhook deliveries, and WebSocket connections are protected.

AES-256

Data at rest is encrypted using AES-256 encryption. Database storage, backups, and managed secrets are encrypted.

Scoped credentials

API credentials use scoped tokens with least-privilege access. Secrets are managed through a dedicated vault system.

Data Retention

Data retention periods vary by plan tier: Starter (7 days), Pro (30 days), and Max (90 days) for observability data including traces and events. Account information is retained for the duration of your account. Upon account deletion, personal data is removed within 30 days. You may request data export or deletion at any time through the operator API or by contacting us.

Data Sharing

We do not sell your personal data. We share data only with: (a) service providers who assist in operating the platform (payment processing, infrastructure hosting); (b) law enforcement when required by law; (c) workspace members as configured by workspace administrators. Third-party processors are contractually obligated to handle data in accordance with applicable data protection laws.

Your Rights (GDPR)

Access and portability

Request a copy of your data via the operator API data export endpoints.

Rectification

Update your account information through the settings page or operator API.

Erasure

Request deletion of your data through the data controls API or by contacting us.

Objection and restriction

Object to processing or request restriction of specific data processing activities.

Cookies and Tracking

We use essential cookies for session management (_agent_ops_key) and theme persistence. We do not use third-party tracking cookies or advertising networks. WebSocket connections use a separate authentication mechanism (socket tokens) and do not rely on cookies.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

Contact

For privacy-related inquiries, please visit our contact page or refer to our Terms of Service .