enagramsGet Started

Legal

Privacy Policy

Effective April 12, 2026

Enagrams (“we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights with respect to it.

1. What We Collect

Account information

When you create an account we collect your email address and, if you use OAuth, your name and profile picture from the identity provider.

Usage data

We collect information about how you interact with the Service: tool calls made, session durations, feature usage, and error events. This data is used to improve the product and diagnose issues.

Workspace content

We store the decisions, file paths, session metadata, and agent activity that you and your teammates submit through the Service. We do not store your source code.

Payment information

If you subscribe to a paid plan, payment is processed by a third-party provider (Stripe). We do not store your full card number or CVV. We retain billing history and subscription status.

Cookies and local storage

We use session cookies for authentication and local storage to persist UI preferences. We do not use third-party advertising cookies.

2. How We Use Your Information

  • To provide, operate, and maintain the Service.
  • To authenticate you and manage your account.
  • To process payments and send billing-related communications.
  • To send product updates, security notices, and support replies.
  • To analyze aggregate usage trends and improve the Service.
  • To comply with legal obligations.

We do not sell your personal data. We do not use your workspace content to train AI models.

3. How We Share Your Information

We share your information only in the following circumstances:

Service providers

We use third-party vendors (e.g. Supabase for database hosting, Stripe for payments, OpenAI for embeddings) who process data on our behalf under confidentiality agreements.

Workspace members

Decisions and agent activity you submit to a shared workspace are visible to other members of that workspace.

Legal requirements

We may disclose your information if required by law, court order, or governmental authority.

Business transfers

If Enagrams is acquired or merged with another company, your information may be transferred as part of that transaction. We will notify you before your data is subject to a different privacy policy.

4. Data Retention

We retain your account data for as long as your account is active. Workspace content is retained for the duration of your subscription plus 30 days after cancellation to allow for account recovery.

You can request deletion of your account and associated data at any time by contacting hello@enagrams.co. We will process deletion requests within 30 days.

5. Security

We use industry-standard security measures including encryption in transit (TLS), encryption at rest, and access controls to protect your data. No method of transmission over the internet is 100% secure. We encourage you to use a strong, unique password and enable any available two-factor authentication.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access — request a copy of the data we hold about you.
  • Rectification — request that we correct inaccurate data.
  • Erasure — request deletion of your personal data.
  • Portability — request a machine-readable export of your data.
  • Objection — object to processing of your data for certain purposes.
  • Restriction — request that we limit how we process your data.

To exercise any of these rights, contact us at hello@enagrams.co.

7. Children

The Service is not directed at children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

8. International Transfers

Enagrams is based in the United States. If you access the Service from outside the US, your data may be transferred to and processed in the US. We rely on standard contractual clauses and other appropriate safeguards for international transfers where required by applicable law.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by a prominent notice in the Service at least 14 days before they take effect.

10. Contact

Questions or concerns about this Privacy Policy? Reach us at hello@enagrams.co.