← Back to vynos.ai
Privacy Policy
Last updated: April 2, 2026
1. Information We Collect
We collect information you provide directly and information generated through your use of the Service:
| Category | Data | Purpose |
|---|
| Account | Email, name, organization | Authentication and communication |
| Salesforce | OAuth tokens, org metadata (objects, flows, Apex, limits) | Platform analysis and recommendations |
| Conversations | Chat messages, queries, generated code | Service delivery and quality improvement |
| Usage | Feature usage, conversation counts, API calls | Billing, analytics, capacity planning |
| Knowledge | Uploaded documents (PDFs, text files) | Private knowledge base for your workspace |
2. How We Use Your Information
- Provide, maintain, and improve the Service
- Process your Salesforce metadata to deliver contextual recommendations
- Generate and deploy code to your connected Salesforce organizations
- Send transactional emails (invitations, notifications, alerts)
- Monitor service health and prevent abuse
3. Data Storage and Security
Your data is stored in AWS eu-west-1 (Dublin) using:
- Aurora PostgreSQL with encryption at rest (KMS)
- S3 with server-side encryption for uploaded files
- Salesforce credentials encrypted via KMS envelope encryption (AES-256-GCM)
- All data transmitted over TLS 1.2+
4. Data Sharing
We do not sell your data. We share data only with:
- AWS — infrastructure provider (data processing agreement in place)
- Anthropic — AI model provider for chat and code generation (conversation content sent for processing, not stored by Anthropic)
- Salesforce — your connected orgs (only when you initiate actions)
5. Tenant Isolation
Each workspace is isolated at the database level using PostgreSQL Row-Level Security (RLS). Your data is never accessible to other tenants. All queries are scoped to your tenant ID.
6. Data Retention
- Active accounts: data retained as long as your account is active
- Deleted accounts: data retained for 30 days (grace period), then permanently deleted
- Audit logs: retained for 1 year for compliance
- Uploaded documents: deleted when you remove them or delete your workspace
7. Your Rights
You have the right to:
- Access — export all your data via Settings > Data Export
- Rectification — update your account information at any time
- Deletion — delete your workspace and all associated data
- Portability — export your data in JSON format
- Restriction — contact us to restrict processing
8. Cookies
We use essential cookies for authentication (session cookies). We do not use advertising or tracking cookies. Third-party analytics may be added in the future with explicit consent.
9. Changes to This Policy
We may update this Privacy Policy. Material changes will be communicated via email or in-app notification. The "last updated" date at the top indicates the most recent revision.
10. Contact
For privacy inquiries or data requests, contact us at platform@vynos.ai.