Privacy Policy.

1. Introduction

Agntly Inc. ("Agntly", "we", "us", or "our") operates the Agntly API platform and related services (the "Service"). This Privacy Policy describes how we collect, use, disclose, and protect information about you when you use our Service, visit our website, or interact with us.

By accessing or using Agntly, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use our Service.

2. Data We Collect

Account & Identity Data: When you register, we collect your name, email address, company name, and business use case. For enterprise accounts, we collect business verification information (KYB) as required by law.

API Usage Data: We log all API requests including endpoints called, request timestamps, response codes, IP addresses, and API key identifiers. This data is used for security, billing, and debugging purposes.

Transaction Data: All payment transactions processed through Agntly are recorded including wallet IDs, amounts, timestamps, transaction hashes, and metadata provided by your agents. This data is stored immutably for compliance purposes.

Device & Technical Data: We collect browser type, operating system, device identifiers, and session data when you use our dashboard.

Communications: If you contact us by email or support chat, we retain those communications.

Waitlist Data: If you join our waitlist, we store your name, email, company, use case, and estimated transaction volume to help us prioritize onboarding.

3. How We Use Your Data

We use collected data to:

• Provide, operate, and improve the Agntly Service
• Process and settle transactions initiated by your agents
• Enforce spending rules and detect anomalous activity
• Send transactional emails (payment confirmations, alerts, API key notices)
• Comply with legal obligations including financial regulations, AML/KYC requirements, and OFAC sanctions screening
• Respond to support requests and communicate about your account
• Conduct product analytics to understand usage patterns and improve features
• Send product updates and announcements (you may opt out at any time)

We do not use your data to train AI or machine learning models. We do not sell your data to third parties for advertising purposes.

4. Data Sharing

Service Providers: We share data with third-party vendors who help us deliver the Service, including cloud infrastructure (AWS), analytics (Datadog), error tracking (Sentry), and email delivery. These providers are bound by data processing agreements.

Blockchain: Transaction data settled on the Base blockchain is publicly visible on-chain. Wallet addresses and transaction amounts are pseudonymous but publicly accessible.

Legal Compliance: We may disclose data when required by law, subpoena, court order, or government authority. We will notify you of such requests when legally permissible.

Business Transfers: In the event of a merger, acquisition, or sale of assets, user data may be transferred. We will notify you via email before any transfer occurs.

We never sell, rent, or trade personal information to third parties for marketing or advertising.

5. Data Retention

We retain your account data for as long as your account is active, plus 7 years after account closure for financial compliance purposes. Transaction records are retained for a minimum of 7 years as required by financial regulations.

API logs are retained for 90 days for debugging and security purposes. Dashboard session data is cleared after 30 days of inactivity.

Waitlist data is deleted 12 months after collection if you have not created an account.

6. Security

Agntly implements enterprise-grade security measures including:

• TLS 1.3 encryption for all data in transit
• AES-256 encryption for data at rest
• AWS KMS hardware security modules for cryptographic key management
• Regular penetration testing by independent security firms
• SOC 2 Type II certification (in progress)
• Multi-factor authentication for all dashboard access

Despite these measures, no system is 100% secure. Please notify us immediately at security@agntly.io if you believe your account has been compromised.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data (subject to legal retention requirements)
• Portability: Receive your data in a machine-readable format
• Opt-out: Unsubscribe from marketing communications at any time
• Objection: Object to certain types of processing

To exercise any of these rights, contact us at privacy@agntly.io. We will respond within 30 days.

8. Cookies

We use cookies and similar tracking technologies on our website. We use strictly necessary cookies (for authentication and security), analytics cookies (to understand how our site is used), and preference cookies (to remember your settings). We do not use advertising or tracking cookies.

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of our dashboard.

9. Contact Us

For privacy questions, requests, or complaints, contact our Data Protection team:

Email: privacy@agntly.io
Address: Agntly Inc., 100 Main Street, San Francisco, CA 94105, USA

If you are in the EU and have a complaint, you have the right to lodge it with your local supervisory authority.

We may update this Privacy Policy from time to time. We will notify you of material changes by email and by updating the "Effective" date above.