OpsRadar

Legal

Privacy Policy

Last updated: May 2026

The short version

We collect the minimum data needed to run the service. Your client business data — everything read from HubSpot, ClickUp, Harvest, Stripe, and every other tool you connect — is never stored in OpsRadar's database. It is read live, used to answer your question or generate your briefing, and discarded. We do not sell your data. We do not share it with advertisers. Email us to delete your account and we'll do it within 7 days.

What we collect about you

When you create an account or complete the audit form:

  • Name, work email, and company name
  • Password (hashed — we never see the plaintext)
  • Subscription plan and billing status (not payment card details — those stay with Stripe)
  • Audit answers and your generated audit report
  • Your website URL if you provide one
  • IP address (standard logs, used for rate limiting and abuse prevention)
  • Page views via Vercel Analytics (cookieless, no personal profile built)

Your connected tools — the critical rule

The AI COO connects to tools your agency already uses: HubSpot, Pipedrive, ClickUp, Asana, Monday, Harvest, Toggl, Stripe, Calendly, Apollo, and others. When you connect a tool, we store the OAuth token or the encrypted API key you provide. That credential is the only thing we persist.

Your client business data is never written to our database. When the AI COO answers a question or generates a briefing, it reads live from your connected tools through the stored credential, reasons over the result, and returns the answer. The underlying data — deal values, time entries, invoices, contacts — is never retained on our servers.

You can revoke any credential at any time from your dashboard. Revocation immediately removes the stored key and disables all reads from that tool.

Why we collect what we collect

  • Account data — to authenticate you, manage your subscription, and send product and billing emails
  • Audit answers — to generate your personalized audit report
  • Tool credentials — to read live data from your connected tools on demand
  • IP address — to enforce rate limits and block abuse on AI endpoints
  • Analytics — to understand which pages and features are useful

Where your data lives

Account, subscription, and audit data is stored in Supabase (US-based PostgreSQL). Encrypted tool credentials are stored in Supabase using column-level encryption. Transactional emails (welcome, billing, briefings) are sent via Resend. Rate limiting and session caching use Upstash Redis. The application is hosted on Vercel. Analytics is Vercel Analytics — cookieless and GDPR-friendly. We do not use Google Analytics, Facebook Pixel, or any advertising trackers.

Subprocessors and AI

The AI COO uses Claude (Anthropic) to reason over your live data and answer questions. When you ask a question or request a briefing, the relevant data read from your tools is passed to Anthropic's API to generate the response. Anthropic does not use your business data to train its models. Their privacy policy is at anthropic.com/privacy.

Our full subprocessor list: Supabase, Vercel, Resend, Upstash, Anthropic, Stripe (payment processing). We do not sell your data to any third party.

Cookies and local storage

OpsRadar uses no tracking cookies. Authentication uses a secure HTTP-only session cookie set by Supabase. There is a small localStorage entry for your theme preference. No advertising pixels, no third-party trackers, no fingerprinting.

How long we keep your data

Account and audit data is retained for the duration of your subscription plus 90 days after cancellation. After 90 days, your account and all associated data is permanently deleted. Tool credentials are deleted immediately when you revoke them or cancel your subscription. If you want everything deleted sooner, email us.

Your rights

Regardless of where you are, you can:

  • Request a copy of all data we hold about you
  • Correct anything that is wrong
  • Delete your account and all data
  • Revoke any tool integration at any time from your dashboard
  • Unsubscribe from marketing emails (every email has an unsubscribe link)

To exercise any of these rights, email lawand@opsradar.co. We'll reply within 3 business days.

Changes to this policy

If we change anything material, we'll update the date at the top and notify active subscribers by email before the change takes effect. We will not silently expand what we collect or share.

Contact

Questions, data requests, or concerns: lawand@opsradar.co

— The OpsRadar Team