Privacy Policy
Effective July 4, 2026
This policy says what BizOps Pilot collects, why, and what control you have. It is written to be read, not skimmed past. The short version: we collect the minimum needed to run your automations, we encrypt the sensitive parts, we sell nothing, and you can delete everything yourself at any time.
What we collect
- Account data: your email address, an optional display name, and a hash of your password (scrypt with a per-user salt; we never store or see the password itself).
- Automation data: the Pilots you create (titles, descriptions, workflow steps), their run history, and the trigger payloads external services send to your delivery URLs.
- Connector credentials: API keys and tokens you choose to connect (for example a Slack webhook URL, a Resend key, or your own Anthropic key). These are encrypted with AES-256-GCM before they reach the database and are never shown again after you save them.
We do not collect analytics profiles, advertising identifiers, or behavioral tracking data.
Cookies
We set exactly one cookie: an httpOnly session token that keeps you logged in. It is strictly necessary for the service to function, which is why you do not see a cookie consent banner. There are no third-party or tracking cookies.
How your data is used
- To execute the automations you build, exactly as configured.
- To show you run history and step output on your own dashboard.
- To secure the service (rate limiting, abuse prevention).
- To contact you about your account when necessary. No marketing without consent.
We do not sell or rent your data. We do not share it with advertisers.
AI processing
If you connect your own Anthropic API key, the content of AI steps (the step instruction plus the data flowing through that step) is sent to Anthropic under your key and their terms, billed to you directly. If a server-side key is configured, the same content is processed under our key. With no key at all, AI steps run a deterministic local fallback and nothing leaves the server.
Retention and deletion
- Run history is capped at the newest 100 runs per Pilot; older runs are deleted automatically.
- Finished queue jobs (which can contain trigger payloads) are deleted after 7 days.
- Disconnecting a connector deletes its encrypted credentials immediately.
- Deleting your account (Account page) immediately and permanently deletes your user record, all Pilots, all run history, all queued jobs, and all encrypted credentials. There is no soft-delete or retention window.
Your rights
You can export any Pilot as JSON from its page, change your password, and delete your account without asking us. For access, correction, or portability requests beyond that (including GDPR and CCPA requests), email support@bizopspilot.com and we will respond within 30 days.
Subprocessors
The service runs on cloud hosting and a managed database provider, and, only when an AI key is in use, Anthropic for AI processing. Each processes data solely to provide the service. A current list is available on request via the support email.
Security
Credentials are encrypted at rest (AES-256-GCM). Passwords are scrypt-hashed with per-user salts. Sessions are httpOnly JWTs. Webhook delivery URLs use per-Pilot secrets compared in constant time. Every route enforces per-user ownership. If we ever learn of a breach affecting your data, we will notify you without undue delay.
Changes
If this policy changes materially we will update the effective date above and, for significant changes, notify you by email before they take effect.
Contact
Privacy questions: support@bizopspilot.com