AgentKavach
Sign InGet Started

Privacy Policy

Last updated: March 14, 2026

1. Information We Collect

AgentKavach collects information necessary to provide our budget enforcement and cost tracking services:

  • Account information: Name, email address, and organization name provided during registration.
  • Usage telemetry: LLM API call metadata including model names, token counts, and computed costs. We do not collect or store prompt content, completion content, or any LLM input/output data.
  • Technical data: IP addresses, browser type, and device information for security and service improvement.
  • Billing information: Payment details are processed and stored by our payment processor (Stripe). We do not store credit card numbers.

2. How We Use Your Data

  • To provide, maintain, and improve our budget enforcement and alerting services.
  • To display spend analytics and cost dashboards to authorized users in your organization.
  • To send alert notifications through your configured channels (email, Slack, PagerDuty, webhooks).
  • To process payments and manage subscriptions.
  • To detect and prevent fraud, abuse, and security incidents.

3. Data We Do Not Collect

AgentKavach is designed with data minimization as a core principle. We explicitly do not collect, store, transmit, or have access to:

  • LLM prompt content or completion responses.
  • Your LLM provider API keys (these remain client-side only).
  • The semantic content of any AI agent conversations.
  • Personal data processed by your AI agents.

4. Data Retention

Usage telemetry is retained according to your plan tier: 7 days (Free), 30 days (Pro), or 90 days (Max). Account information is retained for the duration of your account. Upon account deletion, all associated data is permanently removed within 30 days.

5. Data Security

We protect your data with TLS 1.2+ encryption in transit, AES-256 encryption at rest, JWT and API key authentication, role-based access controls scoped per organization, and Redis-backed rate limiting to prevent abuse.

6. Third-Party Services

We use the following third-party services to operate AgentKavach:

  • Stripe: Payment processing.
  • Resend: Transactional email delivery for alerts.

Each third-party provider is contractually obligated to protect your data in accordance with their respective privacy policies.

7. Your Rights

You have the right to:

  • Access and export your usage data at any time via the API.
  • Request correction of inaccurate account information.
  • Delete your account and all associated data.
  • Withdraw consent for non-essential data processing.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes via email or through a notice on our dashboard. Continued use of the service after changes constitutes acceptance of the updated policy.

9. Contact

For privacy-related inquiries, contact us at privacy@agentkavach.dev.