Privacy Policy

Last updated: May 2026. This Privacy Policy explains how AgencyHawk collects, uses, and protects personal data when you use our SaaS platform.

1. Data we process

We process account identifiers (name, email), workspace configuration, client reporting metadata, support tickets, and usage logs. Authentication is handled by Clerk; application data is stored in encrypted cloud databases with tenant-scoped access controls.

2. Legal bases (GDPR)

We process data to perform our contract with you, for legitimate interests (security, product improvement), and with consent where required (e.g., non-essential cookies).

3. Cookies

Essential cookies maintain your session. Analytics cookies are optional and only activated after you click "Accept All" on our cookie banner. You may withdraw consent by clearing site data in your browser.

4. Sub-processors

We use infrastructure and email providers (e.g., Vercel, Supabase, Resend) under data processing agreements. A current sub-processor list is available on request.

5. Retention & deletion

Workspace data is retained for the subscription term plus a reasonable backup period. You may request export or deletion by contacting support; we will verify tenant ownership before erasure.

6. Your rights

Depending on jurisdiction, you may access, correct, delete, or port your data, and object to certain processing. EU/UK residents may lodge complaints with their supervisory authority.

7. Security

We enforce TLS in transit, role-based access, and tenant isolation at the application layer. No method of transmission is 100% secure; report suspected incidents promptly.