AgentPM Privacy Policy

Version 1.0 Last updated: May 21, 2026

This Privacy Policy explains how AgentPM ("AgentPM," "we," "us," or "our") collects, uses, discloses, and retains information when you access, install, configure, or use AgentPM.

This Policy works together with the AgentPM End User License Agreement. Capitalized terms not defined here have the meanings given in that agreement.

1. Information We Collect

We collect information you provide directly, information generated by your use of the Service, and information collected by the local AgentPM collector when it is installed and configured.

This may include account information, user names, email addresses, organization membership, authentication identifiers, install codes, agent IDs, hostnames, local usernames, monitored home directories, file paths, working directories, project metadata, git metadata, model names, token usage, prompts, responses, tool calls, shell commands, terminal output, error output, timestamps, search queries, opened-result events, logs, and other information contained in supported coding-agent session files.

2. Local Agent Collection

The AgentPM collector runs on systems and directories that you or your organization configure. If the collector has access to supported session files, it may collect and upload data from those files to AgentPM.

Organization administrators and users are responsible for configuring monitored systems and directories, obtaining required permissions and consents, and removing the collector or monitored directories when collection is no longer authorized.

3. How We Use Information

We use information to provide, operate, secure, debug, support, analyze, maintain, improve, and develop AgentPM. This includes indexing conversations, powering search, showing activity and insights, generating coaching and summaries, detecting risk signals, monitoring reliability, troubleshooting issues, preventing abuse, and improving product quality.

We may also use aggregated, anonymized, or de-identified information for analytics, benchmarking, research, model-quality evaluation, and product development.

4. AI Providers And Service Providers

We may disclose Customer Data and transcript-derived content to third-party service providers and AI providers, including OpenAI or similar providers, to generate insights, keyframes, coaching, classifications, summaries, search improvements, and related features.

We may add options in the future for enterprise customers to disable certain AI processing, use customer-provided model keys, or configure alternative providers.

5. Sensitive Information

AgentPM is not designed for protected health information, payment card data, government identifiers, children's data, biometric data, export-controlled data, production secrets, passwords, private keys, security credentials, or other regulated or highly sensitive data unless we have entered into a separate written agreement that expressly permits it.

Customers and users are responsible for preventing sensitive information from being collected, deleting unwanted data, and rotating credentials or secrets if they are exposed.

6. Telemetry And Operational Logs

We collect telemetry and operational logs such as search queries, user identifiers, organization identifiers, agent identifiers, request metadata, performance metrics, access logs, opened-result events, and error logs. We use this information for security, support, debugging, reliability, analytics, product improvement, and search-quality evaluation.

Telemetry may include Customer Data when it contains or is derived from user activity or Service usage.

7. Retention And Deletion

We retain information for as long as needed to provide and improve the Service, comply with legal obligations, resolve disputes, enforce agreements, protect the Service, and maintain security and audit records.

Customers may delete conversations or request agent purge through available Service controls. Deletion removes data from active serving systems subject to technical limits, backups, legal holds, security logs, audit records, telemetry, and aggregated, anonymized, or de-identified data. We may retain deletion records or tombstones to prevent deleted content from being reprocessed.

8. Security

We use commercially reasonable safeguards designed to protect information, which may include signed agent uploads, authentication, organization access controls, encryption in transit, local private keys that are not intentionally uploaded, and owner-restricted local agent files.

No system is perfectly secure. You are responsible for protecting your accounts, systems, local agent installations, monitored directories, and credentials.

9. Your Choices

You may stop using AgentPM, uninstall or disable the local collector, remove monitored directories, delete conversations, request agent purge, or contact us about privacy requests. Certain requests may be handled by your organization administrator if your account is part of an organization.

Depending on your location, you may have rights to access, correct, delete, or receive information about personal data. We will respond to applicable privacy requests as required by law.

10. Changes

We may update this Privacy Policy from time to time. Material changes will be effective when posted or otherwise provided, unless a later effective date is stated.

11. Contact

Questions or requests may be sent to:

AgentPM Email: [privacy@agentpm.dev]