Privacy Policy
Effective Date: April 9, 2026 · Version 1.0
BitSentry ("BitSentry," "we," "us," or "our") is committed to protecting your personal data and maintaining your privacy. This Privacy Policy describes how we process Personal Data in the context of our business operations, including our website (bitsentry.ai) and our ops automation platform and products (the "Services").
1. Scope
This Policy governs the processing of Personal Data where BitSentry acts as a Controller, meaning we determine the purposes and means of the processing. This includes data pertaining to:
- Visitors to our website
- Customers who have subscribed to our Services
- Registered users of BitSentry products (Dashboard and SuperTerminal)
- Individuals whose personal data is processed for our internal business purposes (e.g., support, marketing, administration)
This Policy does not apply to Personal Data that we process on behalf of our Customers during the provision of the Services. In such instances, the processing is governed by the applicable data processing agreement and the Customer's own privacy notice.
2. Data Controller
BitSentry is the Data Controller for Personal Data processed for its own purposes. When processing customer incident data or server logs, BitSentry acts as a Data Processor solely on behalf of, and under the instructions of, our Customers.
Contact: theo@bitsentry.ai
3. Personal Data We Collect
| Category | Examples |
|---|---|
| Website visitors | Name, email address (from beta signup/contact forms), usage data, IP address, device information |
| Product users | Account information (email, username), usage data, configuration preferences |
| Through integrations | Identifiers from integrated third-party platforms (e.g., Sentry, PagerDuty) as configured by the Customer |
4. How We Use Your Data
| Purpose | Legal Basis (GDPR) |
|---|---|
| Provision and maintenance of Services | Performance of a contract |
| Customer support and communication | Performance of a contract |
| Security and fraud prevention | Legitimate interests |
| Marketing communications | Consent or legitimate interests |
| Product improvement and analytics | Legitimate interests |
| Compliance with legal obligations | Legal obligation |
5. SuperTerminal: Local-First Data Handling
SuperTerminal is a desktop application that runs on your machine. SSH connections go directly from your machine to your servers. AI API calls go directly from your machine to your chosen provider (OpenAI, Anthropic, Groq, Gemini, OpenRouter, KiloCode, or Ollama). When using Ollama, all AI processing happens locally on your machine with no external network calls. BitSentry does not see, store, or transmit your server logs, SSH credentials, or AI conversation data. Execution logs are stored locally on your machine.
6. Dashboard: Server-Side Data Handling
The BitSentry Dashboard processes logs and investigation data on our infrastructure (or your self-hosted deployment). Customer Data is encrypted at rest and in transit. We retain investigation data for the duration of the subscription plus 30 days after termination, after which it is deleted.
7. Cookies
We use cookies and similar technologies on our website to provide functionality, analyze usage, and maintain security. You may manage cookie preferences through your browser settings. Disabling cookies may affect website functionality.
8. Sharing of Personal Data
We may share Personal Data with:
- Service providers: Third-party entities performing business functions on our behalf (hosting, analytics, security)
- Legal authorities: When required by law or necessary to defend our legal rights
We do not sell Personal Data.
9. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your Personal Data:
- Right of access
- Right to rectification
- Right to erasure
- Right to restriction of processing
- Right to data portability
- Right to withdraw consent
- Right to lodge a complaint with a supervisory authority
To exercise these rights, contact us at theo@bitsentry.ai.
10. California Residents (CCPA/CPRA)
If you are a California resident, you have the right to know what Personal Information we collect, request its deletion, request correction of inaccurate information, and opt out of the sale or sharing of Personal Information. BitSentry does not sell or share Personal Information for cross-context behavioral advertising.
To exercise these rights, contact us at theo@bitsentry.ai.
11. Data Retention
We retain Personal Data only for the duration necessary to fulfill the purposes for which it was collected. Service-related data may be retained for up to three (3) years from the date of our last interaction. Marketing opt-out preferences are retained indefinitely to prevent future unsolicited communications.
12. Security
We implement technical and organizational measures to protect Personal Data from unauthorized access, disclosure, modification, and destruction. These measures are reviewed periodically. For security inquiries, contact theo@bitsentry.ai.
13. Children's Data
Our Services are not directed at children under the age of 13 (or the applicable age in your jurisdiction). We do not knowingly collect personal information from children.
14. Changes to This Policy
We may update this Policy from time to time. Material changes will be communicated via our website or email. Continued use of our Services after changes constitutes acceptance of the updated Policy.
15. Contact
For questions about this Privacy Policy or to exercise your data rights:
BitSentry
Email: theo@bitsentry.ai