Privacy Policy

Last updated: February 20, 2026

This Privacy Policy explains how AgentStore ("AgentStore," "we," "us," or "our") collects, uses, shares, and protects personal data when you visit agentstore.ai and join our waitlist.

This policy currently applies to our waitlist-stage website. It does not describe future product features that are not yet live.

1. Data Controller and Contact

AgentStore is the data controller for personal data covered by this policy.

• Privacy requests: privacy@agentstore.ai
• Legal requests: hello@agentstore.ai

We currently provide contact by email. If your local law requires additional verified controller contact details for a specific request, include that request in your email.

2. Personal Data We Collect

2.1 Data you provide directly

• Email address when you join the waitlist.
• Consent records such as consent timestamp and policy version.
• Communications if you email us.

2.2 Data collected automatically

• Technical and log data, including IP address, approximate geolocation, browser, referrer, request metadata, and page interaction events.
• Cookie and similar tracking data, based on your consent choices where required.

2.3 Data from service providers

Our providers may process data on our behalf for hosting, analytics, advertising attribution, and transactional email delivery.

3. How We Use Personal Data

• Operate and maintain the website and waitlist.
• Send waitlist and launch-related emails.
• Measure website performance and improve user experience.
• Measure advertising campaign effectiveness.
• Detect abuse, bot traffic, and security incidents.
• Comply with legal obligations and enforce our terms.

4. Legal Bases (EEA/UK/CH)

If GDPR or equivalent laws apply, we rely on the following legal bases:

• Consent for non-essential cookies/pixels and waitlist marketing communications where required.
• Legitimate interests for service security, fraud prevention, basic site operations, and internal analytics where lawful.
• Legal obligation where processing is required by applicable law.

5. Cookies and Tracking Technologies

We use cookies and related technologies in three categories: essential, analytics, and advertising. Non-essential tracking is consent-gated where required by law.

For full details, see our Cookie Notice.

6. Service Providers and Disclosures

We may disclose personal data to trusted providers, including:

• Vercel (hosting and website performance analytics).
• Google Analytics 4 (website analytics).
• Meta Pixel (ad attribution and campaign analytics).
• Resend (waitlist and transactional email delivery).
• Supabase (managed Postgres storage for waitlist and consent records).

We may also disclose data when required by law, to protect rights and security, or during a business transfer.

7. Sale/Sharing and Targeted Advertising (California)

We do not sell personal information for money. Depending on how advertising technologies are configured, certain online identifiers may be considered "sharing" for cross-context behavioral advertising under California law.

To opt out of this type of processing, use cookie controls, our self-serve privacy controls page.

8. International Data Transfers

Your data may be processed outside your home country. Where required, we rely on appropriate transfer mechanisms such as adequacy decisions and contractual safeguards (for example, Standard Contractual Clauses).

9. Data Retention

• Waitlist email and related consent metadata: up to 24 months after signup if no account conversion occurs.
• Security and audit logs: retained as needed for abuse prevention, legal compliance, and dispute handling.
• We may retain limited records longer when required by law or for legal defense.

10. Your Privacy Rights

10.1 Rights available to all users

• Access, correction, and deletion requests.
• Use our self-serve privacy controls page for data export and deletion requests.
• Unsubscribe from waitlist/marketing emails at any time using our self-serve unsubscribe page.
• Withdraw consent for non-essential tracking.

10.2 EEA/UK/CH rights

• Access, rectification, erasure, and restriction.
• Data portability and objection to processing.
• Withdraw consent where processing is consent-based.
• Complain to your local supervisory authority.

10.3 California rights (CCPA/CPRA)

• Know what we collect, use, disclose, sell/share.
• Request deletion and correction.
• Opt out of sale/sharing and certain profiling uses.
• Non-discrimination for exercising your rights.

10.4 How to exercise rights

Use our self-serve privacy controls page for data export or deletion requests, and our self-serve unsubscribe page for waitlist email removal. We will verify requests proportionate to risk and respond within 30 days unless a lawful extension applies.

11. Children

This site is not intended for individuals under 16. We do not knowingly collect personal data from children under 16.

12. Security

We use administrative, technical, and organizational safeguards designed to protect personal data. No method of transmission or storage is completely secure.

13. Changes to This Policy

We may update this policy from time to time. We will post updates here and change the "Last updated" date. Material changes become effective when posted unless stated otherwise.

14. Contact

• Privacy: privacy@agentstore.ai
• General and legal: hello@agentstore.ai