Privacy Policy

1. Introduction

AgencyKit ("we", "us", "our") is committed to protecting your privacy. This policy explains how we collect, use, and protect your information when you use our platform at agencykit.tech and app.agencykit.tech.

By using AgencyKit, you agree to the collection and use of information in accordance with this policy. If you do not agree, please discontinue use of our service.

2. Information We Collect

We collect the following types of information to provide and improve our service:

• Account information, your name, email address, and password (stored as a bcrypt hash)
• Business information, client data, proposals, contracts, invoices, and time logs you create
• Usage data, how you interact with the app (pages visited, features used)
• Payment information, processed by Stripe, PayPal, or Paymob; we never see or store your full card number
• Log data, IP address, browser type, operating system, and timestamps of requests

3. How We Use Your Information

• To provide, operate, and improve the AgencyKit platform
• To send transactional emails (invoice notifications, contract signing confirmations)
• To send product updates and announcements (you can opt out at any time)
• To ensure platform security and prevent fraud or abuse
• To respond to support requests and communications
• To comply with legal obligations

4. Data Storage and Security

• Data is stored on secure servers located in the EU
• All data transmission is encrypted via SSL/TLS
• Passwords are hashed using bcrypt, we cannot recover them
• Payment data is handled exclusively by PCI-compliant processors
• We never store full credit card numbers or CVV codes
• Access to production systems is restricted to authorized personnel only

5. Third-Party Services

We integrate with the following third-party services, each with their own privacy policies:

• Stripe, payment processing (stripe.com/privacy)
• PayPal, payment processing (paypal.com/privacy)
• Paymob, payment processing for MENA region
• Nodemailer / SMTP, transactional email delivery

We do not use Google Analytics, Facebook Pixel, or any third-party advertising trackers.

6. Data Retention

• Active account data, retained for as long as your account exists
• Deleted account data, permanently removed within 30 days of account deletion
• Backup data, removed from backups within 90 days
• Log data, retained for up to 12 months for security purposes

7. Your Rights (GDPR)

If you are located in the European Union, you have the following rights regarding your personal data:

• Right to access, request a copy of the data we hold about you
• Right to rectification, correct any inaccurate or incomplete data
• Right to erasure, request deletion of your personal data
• Right to data portability, export your data in a machine-readable format
• Right to object, object to processing for direct marketing purposes

To exercise any of these rights, contact us at privacy@agencykit.tech. We will respond within 30 days.

8. Cookies

We use only essential cookies required for authentication and user preferences (such as dark/light mode). We do not use advertising cookies, third-party tracking cookies, or analytics cookies.

For full details, see our Cookie Policy.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of any material changes by email (if you have notifications enabled) and by updating the "Last updated" date above.

Continued use of AgencyKit after changes are posted constitutes your acceptance of the updated policy.

10. Contact

For privacy-related questions, data requests, or concerns: